The Wireshark is an open-source grab tool with an interface that can be used to perform statistical analysis of system traffic.
Installation
Since Wireshark is interface-based, it is generally run in an interface environment and can be installed by Yum:
Yum Install -y Wireshark wireshark-gnome
So there are two packages installed here.
Usage
Recommended article: Wireshark Basic Introduction and learning TCP three-time handshake
Linux under the interface environment to run, because the capture packet to monitor the network card, so need administrator privileges.
Statistical analysis
In addition to the usage mentioned above, Wireshark is also used for statistical analysis of network traffic, which can be used with the tools under the Statistics menu:
It is useful to Protocol Hierarchy (protocol level) and IO graph (traffic graph).
The Protocol hierarchy tool can clearly see the traffic statistics for each protocol:
IO graph can show the flow of data graphically:
Linux statistical analysis Traffic-wireshark