This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Example for dumping network traffic using tshark and then read it back

0

Hello, I am new to use tshark. I want to dump the network traffic and then read the dumped file. Is there is some link or some sample examples through which i may get help. warm regards, monz

asked 04 Dec '12, 02:31

monz's gravatar image

monz
1222
accept rate: 0%

edited 04 Dec '12, 13:51

Guy%20Harris's gravatar image

Guy Harris ♦♦
17.4k335196

"Dump" in what format? The raw binary capture-file format (in which case you might want to use dumpcap), or the dissected output format that TShark produces, showing the packet details?

(04 Dec '12, 13:52) Guy Harris ♦♦

dump in readable format so that it is easy for me to read it and sent it back after filling it on my structures

(06 Dec '12, 21:27) monz

"[Send] it back" where? Retransmit it on the network or have tcpdump/Wireshark/Tshark read it? Or something else?

(07 Dec '12, 00:19) Guy Harris ♦♦

One Answer:

0

Try Google. You should find plenty of examples.

Some examples are in this link.

Also, you can find the manual here

answered 04 Dec '12, 02:49

SidR's gravatar image

SidR
245121722
accept rate: 30%