[Andreas Fink <afink@xxxxxxxxxxxxx>]

the tcpdump which comes with the system from apple does work if you specify the interface. (-i eth1)

if you dont, you hit a problem.

The wireshark installation I did (http://www.finkconsulting.com/page7.php) was compiled with a newer version of libpcap and tcpdump which dont have this problem anymore unless you monitor the wtl interface. Wireshark works with this fine if you do "Capture->Options" but not if you do "Capture->interfaces". The reason for this is that wireshark opens all interfaces to show the current "traffic". This includes the monitoring pseudo interface wtl which puts the WLAN offline to do monitoring.

 

On 20.01.2007, at 18:37, Todd Wease wrote:

Andreas Fink <andreas@...> writes:

This is a known bug. Shout at Apple about it. I opened a bug report  

about it long ago but Apple doesnt seem to care to fix it so far. And  

of course they leave you in the dark. You can reproduce the same  

problem with tcpdump which comes with MacOS X. So its not wireshark  

being at fault.

tcpdump works fine for me on Intel MacBook.  DarwinPorts Wireshark not so fine.

_______________________________________________

Wireshark-users mailing list

Wireshark-users@xxxxxxxxxxxxx

http://www.wireshark.org/mailman/listinfo/wireshark-users

Andreas Fink

Fink Consulting GmbH

Global Networks Schweiz AG

BebbiCell AG

---------------------------------------------------------------

Tel: +41-61-6666330 Fax: +41-61-6666331  Mobile: +41-79-2457333

Address: Clarastrasse 3, 4058 Basel, Switzerland

E-Mail:  andreas@xxxxxxxx

www.finkconsulting.com www.global-networks.ch www.bebbicell.ch

---------------------------------------------------------------

ICQ: 8239353 MSN: msn1@xxxxxx AIM: smsrelay Skype: andreasfink

Yahoo: finkconsulting SMS: +41792457333