Open: it opens the classical window used to select the file that has to be opened. Whereas the "acp" is the native format for Analyzer, it can open other file formats as well.
Close: close the active document.
Save: save the active document.
Save As: save the active document with the selected name. N.B. The saving process do not permit to exploit all the capture format recognized during the opening process. Only accepted format are the acp (the native one), text-only, and html.
Save Index: saves the packets index (first panel) in a text format.
Print: print the active document.
Print Preview: show the print preview.
Page Setup / Printer Setup: these voices open the windows used to set the page which will be printed and to set the printer parameters.
Recent File List: 1 C:\....: the list of the most recent files.
Exit: it exits from Analyzer.
Undo: it makes void the last command (cut, copy, paste or delete).
Cut: it deletes the selected text and it also copies the selected text on the clipboard. If a capture document is active then it cuts the selected packets from the capture file; these packets are copied to the clipboard. A new copy into the clipboard erases automatically all previous contents.
Copy: it copies the selected text (or the selected packets) in the clipboard.
Paste: it copies the clipboard contents in the current document.
Delete: it deletes the selected text or the selected packets without coping on the clipboard.
Find: it opens the dialog window 'Find' which allows to search the specified text in the current document .
Find Next: it is like the homonymous button in the dialog 'Find'.
Replace: it opens the 'Replace' dialog used to replace a specified text with an other specified text.
Select: it opens the 'Choose Expressions' dialog window that allows you choose an expression that can be as a offline filter; the packets which satisfy the expression will be selected. Unfortunately Analyzer has still two different filter syntax for capturing and offline filtering.
Select All: selects the whole text or all the packets.
Remove Selection: removes the selection from the currently selected packets.
Invert Selection: sets as not selected the currently selected packets and as selected the currently not selected packets.
Go To: these voices group gives the navigation functionality through the packets list.
First: it shows the first packet of the list.
Previous Filtered: it shows the previous packet which satisfies the filter.
Previous: it shows the previous packet.
Next: it shows the next packet
Next Filtered: it shows the next packet which satisfies the filter.
Last: it shows the last packet of the list.
Order by: you can order the packets of the list by one of this six element.
First Protocol: it opens the
windows on the right.
This window shows the list of the protocols supported by Analyzer (the ones defined in the PDF file); Analyzer starts its packet analysis (and display) from the one selected.
For instance, in the following tree view panel the packet analysis considers all the supported protocol:
After selecting "ARP" as the first protocol to be displayed, the packet analysis will start from the ARP protocol and the previous picture becomes:
Macro: opens the dialog used to set a macro (MAC) file.
Refresh Index: it rewrites the packets index without any modification.
New: opens a void capture file; the three blank window appear; you can copy here the most interesting packets from an other capture files.
Begin: this command opens the Begin Capture Dialog Window, which starts the capture on the local network.
New Statistics: opens the Statistics Settings dialog.
New Monitor: opens the Monitoring Settings dialog.
Stop: stops the current real time session.
Suspend Visualization: suspends updating the graph data.
Resume Visualization: resumes updating the graph data. N.B. The capture threads are not stopped so the traffic evaluation goes on.
Display Historical Data: at the end of a real time session shows the history of the collected data.
Selected Field Extraction: it opens the 'Data extraction' dialog. In each tab control folder the user can define a criterion which will be used to extract the data from the packets index (first pane). The extracted data are represented in a table. Each table column is relative to a tab control folder (i.e. each column contains the data extracted using the criterion defined in the relative tab folder).
String before data: defines which string (the token) has to precede the extracted data.
Skip invalid data: if it is checked the data which are found after the selected token and are not of the selected value type (decimal, hexadecimal, octal, binary) are skipped.
Skip rows not containing...: if it is checked the rows which do not contain the token are skipped; else all the rows are considered and the rows which do not contain the token are associated to the default value.
Occurrence number: indicates how many times the token has to be found in each packets index row before starting to look for the data.
Default value: it is the value which is inserted in the table if the token is not found in the row or if there are not valid values after the token.
Combo Box: it sets the type of the found values.
Columns: it opens the dialog used to set from which packets index columns the extraction has to be done.
Add: it adds a new folder to the tab control.
Extract from: it sets if the extraction is done from all the list packets or from the selected ones.
For instance we consider the following row which represents a packets index row:
|1 | 12:03:23.346234 | 08002B-324820 | 08002B-27E21F | IP: 1.2.3.4 => 2.3.4.5 (72) | ICMP: Error= Destination Unreachable IP: 128.2.2.2 |
if the user selects:
token: 'IP'
occurrence number = 3
Skip rows not containing...: checked
Skip invalid data: checked
then this row is not considered in output table.
if Skip rows not containing... is not checked then this row is considered and the default value is inserted in the table.
if occurrence number = 2 then this row is considered and 128 is inserted in the table.
Mac Statistics: it opens (through a
preventive selection of the interested adapter) the dialog 'Mac
Statistics' which shows the link-layer statistics, obtained by querying directly
the network adapter. Currently only Ethernet statistics (collisions, CRC errors,
...) are supported.
NOTE: there are some adapters that do not collect all the statistics; therefore
those values cannot be printed.
Display Settings: opens the settings dialog relative to the current graph.
Change Display Mode: it opens the dialog which shows the list of the available data representations.
Copy Data: it copies the table containing the displayed data on the clipboard, so it can be pasted on an 'Excel' page.
Protocol Def.: it opens the Protocol Configuration Dialog Window dialog window that is used to indicate the PDF, DFF, IFF files used by Analyzer in order to interpret and display packets.
Set Default Adapter: opens the dialog window used to choose the default network adapter; this adapter will be used by default unless the user chooses a new one before launching the process that is going to access the network device.
Open Capture Copy: if checked the interface does not open the selected file; it makes a temporary copy of the selected file, then it opens this copy.
Capture Association: it opens the dialog which shows the LFF files list. All the list data are extracted from the file Exts.dat. The formats described by these list are automatically recognized by Analyzer.
Test: it checks the selected file validity.
Add: it adds the new defined LFF file in the list.
Update: it recompiles the files list.
Remove: it removes the selected file.
Browse: opens the dialog used to choose a new LFF file.
When this window is closed the list is saved in the Exts.dat file.
Font: the user can select the fonts of the three panes. Selected fonts are saved into Analyzer.ini.
- Editor: shows the editor bar when checked.
- Analyzer: shows the analyzer toolbar when checked.
- Real Time Session: shows the real time session bar when checked.
Status Bar: shows the status bar when checked.
Tree View: this voice refers to the panel which shows the packet tree view:
Expand: makes one level expansion in the tree view.
Collapse: makes a one level collapse in the tree view.
Protocols: it shows the list of the protocols supported by Analyzer.