Wireshark · Wireshark-dev: [Wireshark-dev] Add BPF filtering to Wiretap?

Wireshark-dev: [Wireshark-dev] Add BPF filtering to Wiretap?

From: Gerald Combs <gerald@xxxxxxxxxxxxx>

Date: Mon, 05 Feb 2007 12:11:19 -0800

Would it make sense to add BPF filtering to Wiretap via
pcap_offline_filter()?  This would let you pre-filter capture files in
Wireshark and TShark (and possibly editcap) without having to build a
protocol tree.  The main disadvantage is that it's only available in
WinPcap.

Follow-Ups:
- Re: [Wireshark-dev] Add BPF filtering to Wiretap?
  - From: Guy Harris

Prev by Date: Re: [Wireshark-dev] basic dissector plugin compile error
Next by Date: Re: [Wireshark-dev] Name resolution
Previous by thread: Re: [Wireshark-dev] basic dissector plugin compile error
Next by thread: Re: [Wireshark-dev] Add BPF filtering to Wiretap?
Index(es):
- Date
- Thread