tcpdump --color ?

[Bass <swu4kzi9k4bx () gmail com>]

Hi,
I've been using tcpdump a lot more lately and staring at long streams of
packets and was wondering if the tcpdump devs would be willing to add a
"--color" option to colorize the different major fields in the output.

For example, the timestamp could be one color, the protocol could be a
different color, src & dst could be a different color, flags, tcp options,
etc.

It'd be especially cool and useful if the hex output from -x or -X
colorized the different headers of the packet so that the ethernet frame
hex values would be all one color, the IP header hex values would be a
different color, and the embedded protocol values would be a different
color as well.  This would make it very easy to see the start and end of
each header in the hex output.

Having the color option would simply make it easier and faster for your
eyes to quickly latch on to the different sections and would be very much
appreciated by many people, I'm sure.

Thanks!
-
This is the tcpdump-workers list.
Visit https://cod.sandelman.ca/ to unsubscribe.