I have some pcap files that I am processing with this command:
tshark -T fields -E header=y -e ip.src -e ip.dst
Results are mostly from private network space, but many entries have two ip addresses in the src and dst fields, example below. What does this mean?
ip.src ip.dst
10.5.1.17,10.43.102.241 10.5.1.193,10.10.104.210
