Wireshark

  • Riverbed Technology
  • WinPcap
the world's foremost network protocol analyzer
  • Wireshark
    • About
    • Download
    • Blog
  • Get Help
    • Ask a Question
    • FAQs
    • Documentation
    • Mailing Lists
    • Online Tools
    • Wiki
    • Bug Tracker
  • Develop
    • Get Involved
    • Developer's Guide
    • Browse the Code
    • Latest Builds

Wireshark-users: Re: [Wireshark-users] which Operating System for Wireshark ? bestperformance

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next


From: Ian Schorr <ian.schorr@xxxxxxxxx>
Date: Mon, 6 Jul 2009 20:42:27 +1000

...And, like Ronnie implied, the secret to reasonable Wireshark performance on Windows is making sure that you never, ever, have to do disk swapping.  There's something about Wireshark/glib/gtk/<other> memory management that really doesn't play well with Windows paging, at least when the Windows pagefile is involved...Especially when the Wireshark process itself has pages both being swapped to and from disk.  Once you start disk swapping, go take a nap and come back later.  Hopefully you weren't trying to capture data, because it's all been dropped.
  • References:
    • Re: [Wireshark-users] which Operating System for Wireshark ? bestperformance
      • From: Phillips, Christopher M
    • Re: [Wireshark-users] which Operating System for Wireshark ? bestperformance
      • From: Ian Schorr
  • Prev by Date: Re: [Wireshark-users] which Operating System for Wireshark ? bestperformance
  • Next by Date: [Wireshark-users] Capture the time where no troughput is present
  • Previous by thread: Re: [Wireshark-users] which Operating System for Wireshark ? bestperformance
  • Next by thread: [Wireshark-users] Capture the time where no troughput is present
  • Index(es):
    • Date
    • Thread

Wireshark and the "fin" logo are registered trademarks of the Wireshark Foundation