z/OS Communications Server

z/OS Communications Server

z/OS Communications Server

A high-performance foundation for building and deploying networking applications on z/OS

 View Only
Back to discussions
Expand all | Collapse all

Wireshark can do analysis of CS packet trace on z/OS

  • 1.  Wireshark can do analysis of CS packet trace on z/OS

    Posted Wed February 07, 2024 09:52 AM

    I have a program which collects a TCPIP packet trace on z/OS and creates a file which can be read by Wireshark on a work station.

    (Wireshark display the traffic in a GUI, and interprets fields, etc.  So can sort, filter, extract etc.   It is THE packet Analyzer).

    This has several advantages,

    • it is easy to collect, you do not need to do a CTRACE, and use IPCS.
    • you can use wireshark to decode the TLS handshake, and look at the flows.  (Ive already found this useful)
    • You can use the wireshark  smarts to plot statistics ( eg buffer size over time) etc about the flow of traffic, all the good stuff you get as standard in Wireshark.

    I'm thinking of making it available through a github site.

    Question:  Is there any reason why I should not make this generally available?
    It uses documented interfaces, so anyone could have done it.

    Feel free to contact me offline.

    Colin



    ------------------------------
    Colin Paice
    ------------------------------


  • 2.  RE: Wireshark can do analysis of CS packet trace on z/OS

    Posted Thu February 08, 2024 01:53 PM
    Hi Colin,

    Thanks for sharing.

    I'd be interested in learning some more about your strategy.  We have a need in our ZOS environment.

    Please contact me at steven.estle@peraton.com or my personal email sestle1@gmail.com.

    Steve Estle

    IBM Mainframe System Administrator

    Citizen Security & Public Services

    Office: 303-604-0925

     

    peratonLogoMail




    Original Message


Related Content