hi all
i want to extract few connection level features (not packet level )of the internet traffic through ethernet card interface
the features are as follows
Timestamp Timestamp of paket captured
Duration duration of connection
ip_proto IP protocol type
src_IP source IP address
Dest_IP Destination Address
service Type of service on it such as http telnet
icmp_type type of ICMP service running
src_bytes No of bytes from source
dest_bytes No of bytes from destination
Flags whether SYN flag was used or not
is there any tool for this
or can it be done through any script with tcpdump ?
thanks in advance