Wireshark · Wireshark-users: Re: [Wireshark-users] Is there a way to get the Tshark command to print the application data?

Wireshark-users: Re: [Wireshark-users] Is there a way to get the Tshark command to print the appl

From: Guy Harris <guy@xxxxxxxxxxxx>

Date: Thu, 20 Mar 2008 18:51:03 -0700


On Mar 20, 2008, at 11:59 AM, DFE (Donald Ernst) wrote:

I am trying to use WireShark to measure the response time of myserver for certain applications and need to use it without its GUI.Right now, I execute "Tshark -a duration:120 -i 2 >> test.txt" tocollect the data. This gives me a nice readable text file I canprocess with my own program. However, this method does not give methe application data, just summary information for each packet. Isthere any way to get the actual application data using the Tsharkcommand?

What do you mean by "the actual application data"? If you use the "-V" flag, TShark will give a full dissection of the packet (theequivalent of what would appear in the packet detail pain forWireshark).

References:
- [Wireshark-users] Is there a way to get the Tshark command to print the application data?
  - From: DFE (Donald Ernst)

Prev by Date: Re: [Wireshark-users] tshark & loopback
Next by Date: Re: [Wireshark-users] V1.0.0pre1 & MIB Files
Previous by thread: [Wireshark-users] Is there a way to get the Tshark command to print the application data?
Next by thread: [Wireshark-users] wireless lan packet
Index(es):
- Date
- Thread