Wireshark · Wireshark-users: Re: [Wireshark-users] Need help with capture filters

Wireshark-users: Re: [Wireshark-users] Need help with capture filters

From: Guy Harris <guy@xxxxxxxxxxxx>

Date: Fri, 23 Jan 2009 11:49:09 -0800


On Jan 23, 2009, at 11:31 AM, matt roberts wrote:

This is 1.0.0.

To what does "this" refer? "tshark -v" prints, for me, a whole bunchof numbers:


	$ tshark -v
	TShark 1.1.2 (SVN Rev 26671)

Copyright 1998-2008 Gerald Combs <gerald@xxxxxxxxxxxxx> andcontributors.This is free software; see the source for copying conditions. Thereis NOwarranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULARPURPOSE.

Compiled with GLib 2.16.4, with libpcap 0.9.5, with libz 1.2.3,without POSIXcapabilities, with libpcre 7.8, with SMI 0.4.8, without c-ares,without ADNS,with Lua 5.1, with GnuTLS 2.6.0, with Gcrypt 1.4.3, with MITKerberos, with

	GeoIP.

	Running on Darwin 9.6.0 (MacOS 10.5.6), with libpcap version 0.9.5.

	Built using gcc 4.0.1 (Apple Inc. build 5465).

and the number I care about isn't the one following "Wireshark" or"TShark", it's the one following "with libpcap", as it's libpcap thatcompiles capture filters into BPF code and either interprets them orhands them to the kernel.

Follow-Ups:
- Re: [Wireshark-users] Need help with capture filters
  - From: matt roberts

References:
- [Wireshark-users] Saving a video inside flash
  - From: Ayrton Bressan
- [Wireshark-users] Need help with capture filters
  - From: matt roberts
- Re: [Wireshark-users] Need help with capture filters
  - From: Guy Harris
- Re: [Wireshark-users] Need help with capture filters
  - From: matt roberts

Prev by Date: Re: [Wireshark-users] Need help with capture filters
Next by Date: Re: [Wireshark-users] Need help with capture filters
Previous by thread: Re: [Wireshark-users] Need help with capture filters
Next by thread: Re: [Wireshark-users] Need help with capture filters
Index(es):
- Date
- Thread