Wireshark · Wireshark-users: Re: [Wireshark-users] Sniffing1GigE interfaces without laptop crashing

Wireshark-users: Re: [Wireshark-users] Sniffing1GigE interfaces without laptop crashing

From: Guy Harris <guy@xxxxxxxxxxxx>

Date: Sun, 20 Nov 2011 14:35:40 -0800

On Nov 20, 2011, at 2:15 PM, Kevin Cullimore wrote:

> in either case, no reason NOT to use dumpcap/tcpdump/windump for these purposes . . .

As long as it's "capture and then look at it later" (which is probably the case if you're capturing full-on GigE), yes.

However, if it's a kernel panic, the issue may have nothing to do with whether you're watching the traffic while you're capturing it, and may pop up even with a relatively simple userland network->file code path, or with a faster CPU, or....

Follow-Ups:
- Re: [Wireshark-users] Sniffing1GigE interfaces without laptop crashing
  - From: Kevin Cullimore

References:
- [Wireshark-users] Sniffing1GigE interfaces without laptop crashing
  - From: Kasper Adel
- Re: [Wireshark-users] Sniffing1GigE interfaces without laptop crashing
  - From: Guy Harris
- Re: [Wireshark-users] Sniffing1GigE interfaces without laptop crashing
  - From: Kevin Cullimore

Prev by Date: Re: [Wireshark-users] Sniffing1GigE interfaces without laptop crashing
Next by Date: Re: [Wireshark-users] Sniffing1GigE interfaces without laptop crashing
Previous by thread: Re: [Wireshark-users] Sniffing1GigE interfaces without laptop crashing
Next by thread: Re: [Wireshark-users] Sniffing1GigE interfaces without laptop crashing
Index(es):
- Date
- Thread