- Conventions in this Guide
- User Interface (UI)
- Object Explorer
- Feature Pack Tools - Network Engineering
- Guest Tools
- Configuration Options
Workbench 0.18 User Guide
Although Babel translates IIS W3C logs to PCAP-NG format, Wireshark has no default dissector to present the IIS log data.
Although the text from each log entry is contained in the packet bytes, this is very usable. We’ve written a Wireshark dissector to address this issue. The dissector is called Babel Data Scope (BDS) and is free for download at https://community.tribelab.com/course/view.php?id=15#downloads.
BDS converts log values into Wireshark fields, which means they can be used in filters and find operations in the same way as any other protocol field.
It’s also a good idea to create a “BDS IIS” Wireshark profile to produce a more suitable packet list.