This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

DLC Capture Help - Building Automation

0

Dear Sir or Madame,

We are using wire shark through a dlccapture utility to capture communications through a com port. Interface:\.\pipe\wireshark_pipe

When i run my utility i specify the com port, baud rate, and type of network being arc156 (building automation network). And i guess the utility generates a .bat file and runs wire shark to capture. I see the values that are requested and received on the network but it seems that the time stamp (first and last packet) only show around 12 minutes when we have been running it for hours. Common sense tells you larger file size over time period means more than 12 minutes.

Anyone has any ideas or help. It is a Automated Logic Router that we are monitoring.

asked 13 Jun '14, 11:49

am9355's gravatar image

am9355
1111
accept rate: 0%


One Answer:

0

but it seems that the time stamp (first and last packet) only show around 12 minutes when we have been running it for hours.

can you post a sample capture file somewhere (google drive, dropbox, cloudshark.org)?

Common sense tells you larger file size over time period means more than 12 minutes.

Maybe the 'dlccapture utility' stopped capturing after some time. Can you post a link to that tool (if its available publicly)?

Regards
Kurt

answered 15 Jun '14, 08:07

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%