On 03/13/2012 09:00 PM, Guy Harris wrote:
On Mar 13, 2012, at 2:45 PM, kahou lei wrote:
Can anyone tell me if I can achieve the same thing that wireshark does
in tshark?
Yes. Enable "Packet summary line" in addition to "Packet bytes".
... In the File->Print menu
Hi,
I am trying to display the hex value of the packet. Currently I am using
"-x" option in tshark and I get this output:
1 62 0.00 212.179.66.74 -> 224.0.0.2HSRP Hello (state Active) 62
01 00 5e 00 00 02 00 00 0c 07 ac 01 08 00 45 c0 ..^...E.
0010 00 30 00 00 00 00
Hi,
Is there a way to display hex dump ONLY in tshark? Currently if I use -x
option, it will display something like this:
00 10 94 00 00 02 00 10 94 00 00 01 08 00 45 00 ..E.
0010 00 6e 00 2c 00 00 ff 06 3a 05 c0 55 01 02 c0 00 .n.,:..U
0020 00 01 04 00 04 00 00 01
Hi,
It is Ethernet FCS. I have checked that preference but 1.6.0 doesn't
show any FCS.
I don't think it is the same bug as my packet is just regular Eth/IPv4 header.
Thanks,
Kahou
Which FCS, Ethernet, IEEE 802.11, or something else? If Ethernet or IEEE
802.11, have you tried selecting the
Hi,
I was debugging a packet via wireshark. I notice that version 1.6.0 doesn't
show FCS info but version 1.4.2 does.
Just wonder how can I enable showing FCS option in 1.6.0?
Thanks,
Kahou
___
Sent via:Wireshark-dev mai
Hi,
I wrote a simple program to pipe some data into wireshark. Everything
works fine except it doesn't show up the last packet in the wireshark.
I am using win32 api (WriteFile, FlushFileBuffers). Those function
calls indicate I have successfully written the data to the buffer and
flush it to the
I load it manually tho.
Thanks,
Kahou
On Wed, Mar 17, 2010 at 10:52 PM, kahou lei wrote:
> Hi Guy,
>
> Thanks for you reply.
>
> I don't understand what you mean by "giving the pathname of the named
> pipe as the name of the network interface on which to capture"
Hi Guy,
Thanks for you reply.
I don't understand what you mean by "giving the pathname of the named
pipe as the name of the network interface on which to capture". Can
you give me an example?
I have followed the c++ example on
http://wiki.wireshark.org/CaptureSetup/Pipes. I couldn't get it works
Hi,
I am implementing an application that will receive real time traffic from a
network interface (the interface is on a remote network equipment). I would
like to see if I can display those traffic at the real time in the
wireshark.
That is, the application will recieve the network traffic and t
Hi,
Is it possible to use wireshark API (library, dll, etc) to convert *.pcap
file to a PDML file? The reason is that I would like to use wireshark dll on
my application instead of using the executable to do the conversion.
Thanks,
Kahou
___
Hi,
I made some changes on fibre channel support in wireshark. How can I submit
the changes? Do I need to go thru a code review before I submit the change?
Thanks,
Kahou
___
Sent via:Wireshark-dev mailing list
Archives:
Hi Guy,
My fibre channel captured is in pcap format. What I want to do is to dissect
this file with fibre channel dissector. In this case, do I still need to
write code to read/write the file? Or just create a new DLT value for Fibre
Channel and then register the existing fibre channel dissector w
Hi,
Is there an existing DLT value that I can dissect raw fibre channel packet?
I saw there is a fibre channel dissector (packet-fc.c) but I cannot find a
DLT value corresponse to it.
If there is no such DLT value, can you give me some direction on how to
extend my local wireshark build so that t
13 matches
Mail list logo
