Finding packets
You can easily find packets once you have captured some packets or have read in a previously saved capture file. Simply select the Find packet toolbar item from the decode toolbar. AthTek NetWalk will pop up the dialog box shown in Figure 7-5, The Find Packet dialog.
Figure 7-5. The Find Packet dialog
You might first select the kind of thing to search for:
- String: Find a string in the packet data, with various options.
- Hex Value: Search for a specific byte sequence in the packet data. For example, use “00 00″ to find the next packet including two null bytes in the packet data.
You might specify the String Options when finding by string.
- Encoding: To specify the encoding of Text input.
- Find In: To specify where you want to find.
- Case Sensitive: To specify whether to ignore case or not during finding.