On Mar 20, 2008, at 11:59 AM, DFE (Donald Ernst) wrote:
> I am trying to use WireShark to measure the response time of my
> server for certain applications and need to use it without its GUI.
> Right now, I execute "Tshark -a duration:120 -i 2 >> test.txt" to
> collect the data. This give
On Mar 20, 2008, at 12:04 PM, DFE (Donald Ernst) wrote:
> I'm running on Windows XP, will this still work?
No:
http://wiki.wireshark.org/CaptureSetup/Loopback
___
Wireshark-users mailing list
Wireshark-users@wireshark.org
http://www.wireshark.
I'm running on Windows XP, will this still work?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Guy Harris
Sent: Thursday, March 20, 2008 2:02 PM
To: Community support list for Wireshark
Subject: Re: [Wireshark-users] tshark & loopback
Tennis Smith wrot
I am trying to use WireShark to measure the response time of my server
for certain applications and need to use it without its GUI. Right now,
I execute "Tshark -a duration:120 -i 2 >> test.txt" to collect the data.
This gives me a nice readable text file I can process with my own
program. Howeve
Hi,
Yes, the old dependancy on Net-SNMP has been dropped. I.s.o. that libsmi has
been introduced. You can configure it where it needs to look (the one button)
and what it needs to look for (the other button). A 'standard' collection of
MIBs has been provide, the buttons give you the option to g
That did it. :) Thanks.
-T
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Guy Harris
Sent: Thursday, March 20, 2008 12:02 PM
To: Community support list for Wireshark
Subject: Re: [Wireshark-users] tshark & loopback
Tennis Smith wrote:
>> tshark -i lo0
Tennis Smith wrote:
>> tshark -i lo0
> Running as user "root" and group "root". This could be dangerous.
> Capturing on lo0
> tshark: The capture session could not be initiated (SIOCGIFHWADDR: No such
> device).
...
>> ifconfig
...
> loLink encap:Local Loopback
I *
[TNS>] Thanks for the reply, Steve. See inline.
[TNS>] -T
> I run a series of tests via a loopback interface on Fedora 7. Is
> there any way to start tshark and have it monitor activity on the
> loopback, even if traffic is not yet being passed?
You should be able to just start it as tshark -i
Thank you!
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rob
MacKenzie
Sent: Thursday, March 20, 2008 11:26 AM
To: Community support list for Wireshark
Subject: Re: [Wireshark-users] Automate a Capture
The included tshark app will allow you to automate
The included tshark app will allow you to automate your captures. You
can specify all the options you should need therein. You will need to
use some sort of scheduler to start it at the time you want, but that
shouldn't be an issue. Use the -a option to tell it how long to go for,
i.e.:
Tshark -
Is there a way to automate a wireshark capture. For instance I need to
capture traffic in the middle of the night but will not be able to kick
off the capture in person. I would also like to use specific options
like writing to multiple files so I do not exhaust the buffer.
Wireshark is running o
On Thu, Mar 20, 2008 at 07:17:32AM -0500, Tennis Smith wrote:
> I run a series of tests via a loopback interface on Fedora 7. Is
> there any way to start tshark and have it monitor activity on the
> loopback, even if traffic is not yet being passed?
You should be able to just start it as tshar
It looks like in Wireshark V1.0.0pre1 the facility to add other MIBs has been
reintroduced. I know someone was working on redoing the SNMP dissector - is
this facility operational again?
If so is there any documentation on how to do this with the two buttons in the
Name Resolution section of th
Hi,
I run a series of tests via a loopback interface on Fedora 7. Is there
any way to start tshark and have it monitor activity on the loopback,
even if traffic is not yet being passed?
Thanks,
-T
___
Wireshark-users mailing list
Wireshark-user
Hi
this is my script maybe someone else can use it in a script ms-dos
@echo offsetlocal ENABLEDELAYEDEXPANSIONFOR %%f IN (*.snoop) DO SET List=
%%~nf.pcap & tshark -r %%f -w !List!pause
best regards
> From: [EMAIL PROTECTED]> Subject: Wireshark-users Digest, Vol 22, Issue 54>
> To: wi
Hi everybody
i'm triying to use tshark in order to get all the information about the
protocol RTCP in a command line i type the following line:
tshark -r test.pcap -d udp.port==1027,rtcp -R "rtcp"
and the result
1116 3600.007000 10.184.17.7 -> 10.184.9.30 RTCP Sender Report Source
16 matches
Mail list logo
