Wireshark

  • Riverbed Technology
  • WinPcap
SHARKFEST '13 - Wireshark Developer and User Conference - June 16-19, 2013 - UC Berkeley
  • Wireshark
    • About
    • Download
    • Blog
  • Get Help
    • Ask a Question
    • FAQs
    • Documentation
    • Mailing Lists
    • Online Tools
    • Wiki
    • Bug Tracker
  • Develop
    • Get Involved
    • Developer's Guide
    • Browse the Code
    • Latest Builds

Wireshark-users: Re: [Wireshark-users] PID as column on Wireshark

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next


From: Jake Peavy <djstunks@xxxxxxxxx>
Date: Mon, 28 Sep 2009 13:06:47 -0400

On Mon, Sep 28, 2009 at 8:02 AM, IT eSTUDANT <root.ng@xxxxxxxxx> wrote:
Hi all
Thanks for answers
Linux is my OS. Well. The main objective is to know what process is working and I could correlate it with the application(let say I'd want to filters packets by PID)...

I think you need to do this in two steps:

Step 1) run netstat -lnp and grep or look for the PID or program you're curious about
Step 2) run Wireshark with an appropriate capture or display filter according to the netstat info

--
-jp

The next time I have meat and mashed potatoes, I think I'll put a very large blob of potatoes on my plate with just a little piece of meat. And if someone asks me why I didn't get more meat, I'll just say, "Oh, you mean this?" and pull out a big piece of meat from inside the blob of potatoes, where I've hidden it. Good magic trick, huh?

deepthoughtsbyjackhandey.com




  • References:
    • Re: [Wireshark-users] PID as column on Wireshark
      • From: IT eSTUDANT
  • Prev by Date: Re: [Wireshark-users] PID as column on Wireshark
  • Next by Date: [Wireshark-users] Tshark not displaying all ssl.records
  • Previous by thread: Re: [Wireshark-users] PID as column on Wireshark
  • Next by thread: Re: [Wireshark-users] PID as column on Wireshark
  • Index(es):
    • Date
    • Thread

Wireshark and the "fin" logo are registered trademarks of the Wireshark Foundation