Open Rameen-Mahmood opened 2 weeks ago
Hello. Thanks for the report. I can see how that might occur. Nonetheless is it possible for you to provide your input PCAP file?
OK. None of the packets in that PCAP appear to contain any ethernet device information; but, this method was written to only consider packets which do contain ethernet device information.
Certainly, the method can be adjusted to handle this edge case, at least to provide a more useful error message.
Beyond that, do you expect this method to generate a DataFrame
for this stream? I don't personally see why not; it would only be missing MAC address source and destination information. Nonetheless, I'd be curious to hear the thoughts of the author, @feamster, (judging by the record).
Turns out we don't have the MAC layer because we captured traffic using a WireGuard VPN (that's our method of getting mobile traffic).
@Rameen-Mahmood will try to disable MAC layer check and add dummy fields into the MAC layer. In our case, the MAC layer is boring because it only shows either the gateway or the phone.
Thank you @jesteria for the pointer to the code!
If it helps, you might try the fix proposed by #32 – that is, in branch jsl/fix-dataframe-no-mac
.
Encountering an issue with the
pcap2pandas()
method in thenetml.pparser.parser
module. When a pcap file other than the provided demo.pcap is used, aKeyError: 'datetime'
is raised.Code:
Error:
Environment: