Improve packet analysis robustness, handling of unknown packets #2
Description
In a couple of PCAP files I'm seeing ~1-2% of mangled packets that can't be parsed for some reason. Right now there's just a try/catch (wanted to get the project up), but that's pretty lazy.
Need to improve the robustness in general:
- Better detection of what is/isn't Memcached traffic
- Rejection of unknown opcodes: usually when we get an opcode we don't know, we can't parse the header
- Better logging/whatever to notify users of what happened and why (maybe have a second log file for errors?)