Wireshark mailing list archives
Re: how to start Wireshark automatically at each boot-up?
From: Bill Meier <wmeier () newsguy com>
Date: Thu, 14 Jan 2010 10:31:30 -0500
Karthik Balaguru wrote:
On 1/14/10, Forthofer Russ <Russ.Forthofer () ssfhs org> wrote:From: wireshark-users-bounces () wireshark org [mailto:wireshark-users-bounces () wireshark org] On Behalf Of Karthik Balaguru Sent: Thursday, January 14, 2010 8:30 AM To: Community support list for Wireshark Subject: Re: [Wireshark-users] how to start Wireshark automatically at each boot-up? On 1/14/10, Hrishikesh Murali <hrishikeshmurali88 () gmail com> wrote:Hi, On Thu, Jan 14, 2010 at 5:20 AM, Dai Nish <dai_nish () yahoo co nz> wrote:Please advise me how you could start Wireshark automatically and use it tomonitor network traffic at each boot-up. Just add the line "wireshark&" to /etc/rc.localWill wireshark be able to select the interface by just adding the above line ? I think, it will only start the wireshark. use the "-i <interface>" option. "wireshark -h" will show you the commandline options available.Interesting ! So invoking the wireshark by adding the line "wireshark&" to /etc/rc.local along with the '-i' option solves the interface selection problem. I checked the below link -http://www.wireshark.org/docs/wsug_html_chunked/ChCustCommandLine.html I find very good support in command line for conveying the 'capture stop conditions' and various methods of handling large number of output logs to 'capture output'.
One comment: Using Wireshark directly is not suitable for long-term captures. It dissects frames as they are received and accumulates info in memory about the frames. It will thus use more and more memory as time goes on. The program which should be used is Dumpcap (installed along with Wireshark & etc) which is the program invoked by Wireshark to capture data. Dumpcap can be used to just write a capture to a file (or files). See the man page, the User's Guide and etc for more information. ___________________________________________________________________________ Sent via: Wireshark-users mailing list <wireshark-users () wireshark org> Archives: http://www.wireshark.org/lists/wireshark-users Unsubscribe: https://wireshark.org/mailman/options/wireshark-users mailto:wireshark-users-request () wireshark org?subject=unsubscribe
Current thread:
- how to start Wireshark automatically at each boot-up? Dai Nish (Jan 13)
- Re: how to start Wireshark automatically at each boot-up? Hrishikesh Murali (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Tim.Poth (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Karthik Balaguru (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Karthik Balaguru (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Forthofer Russ (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Karthik Balaguru (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Bill Meier (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Ian Schorr (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Hrishikesh Murali (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Hrishikesh Murali (Jan 14)
- Re: how to start Wireshark automatically at each boot-up? Karthik Balaguru (Jan 15)
- Re: how to start Wireshark automatically at each boot-up? Guy Harris (Jan 15)