Wireshark · Wireshark-users: Re: [Wireshark-users] Wireshark for Beacon Sniffing

Wireshark-users: Re: [Wireshark-users] Wireshark for Beacon Sniffing

From: Guy Harris <guy@xxxxxxxxxxxx>

Date: Wed, 21 Jan 2009 17:40:33 -0800


On Jan 21, 2009, at 5:26 PM, Johne Cookcely wrote:

Hi! Wireshark just crashed "segmentation fault", so I can't tell forthe long trace, unless its possible to extract from the file loggedto disk...............

Unfortunately, it's not; libpcap capture format (Wireshark's nativeformat) doesn't have any provision for storing packet-drop statistics.

Did Wireshark leave a core dump file? If so, can you run gdb with theWireshark binary and the core file, and run the "backtrace" command toget a stack trace?


Does Wireshark crash if you try to read the file logged to disk?

I ran a short 4min 10000 packet trace and 0 packets "Lost" at thebottom of the screen.


"Lost" presumably meaning "Dropped", as that's the word Wireshark uses.

Follow-Ups:
- Re: [Wireshark-users] Wireshark for Beacon Sniffing
  - From: Johne Cookcely

References:
- [Wireshark-users] Wireshark for Beacon Sniffing
  - From: Johne Cookcely
- Re: [Wireshark-users] Wireshark for Beacon Sniffing
  - From: Guy Harris
- Re: [Wireshark-users] Wireshark for Beacon Sniffing
  - From: Johne Cookcely
- Re: [Wireshark-users] Wireshark for Beacon Sniffing
  - From: Guy Harris
- Re: [Wireshark-users] Wireshark for Beacon Sniffing
  - From: Johne Cookcely

Prev by Date: Re: [Wireshark-users] Wireshark for Beacon Sniffing
Next by Date: Re: [Wireshark-users] Wireshark for Beacon Sniffing
Previous by thread: Re: [Wireshark-users] Wireshark for Beacon Sniffing
Next by thread: Re: [Wireshark-users] Wireshark for Beacon Sniffing
Index(es):
- Date
- Thread