Find the answer to your Linux question:
Results 1 to 2 of 2
Does anyone know how to specify a capture filter for wireshark from command line. I looked in the documentation and saw something like "wireshark -f host [ipaddress]" should work but ...
  1. 07-02-2008 #1
    jason.frost
    jason.frost is offline
    Just Joined! jason.frost's Avatar
    Join Date
    Aug 2007
    Location
    Ohio
    Posts
    15

    wireshark command line

    Does anyone know how to specify a capture filter for wireshark from command line. I looked in the documentation and saw something like "wireshark -f host [ipaddress]" should work but appearently my boss says it brings up a file open dialog box.

    Anyone done this before?

    P.S. This is being done on Solaris.
    Reply With Quote Reply With Quote
  2. 07-02-2008 #2
    SagaciousKJB
    SagaciousKJB is offline
    Linux Newbie SagaciousKJB's Avatar
    Join Date
    Aug 2007
    Location
    Yakima, WA
    Posts
    162
    My guess is that he is not putting quotes around his capture filter. When I try running it like this

    Code:
    wireshark -f port 80
    I get "file 80 cannot be opened" and an error about a buffer, however with quotes around 'port 80' it seems fine.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules

...