Here is a script that can use tshark to split a large pcap to multiple small pcaps inpcap="test.pcap" max=$(tshark -r $inpcap -n -T fields -e frame.number|tail -1) # This is the number of packets in …

For installation : sudo yum install dnstop And now some description: […] dnstop is a libpcap application (ala tcpdump) that displays various tables of DNS traffic on your network. dnstop …

Here is something that I had to do in couple of hours to check the logs. The problem was the log file was printing the Received and Sent message in the hex format. I had to verify if the messages were …