randpktdump [ --help ] [ --version ] [ --extcap-interfaces ] [ --extcap-dlts ] [ --extcap-interface=<interface> ] [ --extcap-config ] [ --capture ] [ --fifo=<path to file or pipe> ] [ --maxbytes=<bytes> ] [ --count=<num> ] [ --delay=<ms> ] [ --random-type=<true|false> ] [ --all-random=<true|false> ] [ --type=<packet type> ]


randpktdump is a extcap tool that provides access to the random packet generator (randpkt). It is mainly used for testing and educational purpose.



Print program arguments.


Print program version.


List available interfaces.


Use specified interfaces.


List DLTs of specified interface.


List configuration options of specified interface.


Start capturing from specified interface save saved it in place specified by --fifo.

--fifo=<path to file or pipe>

Save captured packet to file or send it through pipe.


Set the max number of bytes per packet.


Number of packets to generate (-1 for infinite).


Wait a number of milliseconds after writing each packet.


Choose a random packet type for all packets if set to true.


Choose a different random packet type for each packet if set to true.

--type=<packet type>

Use the selected packet type. To list all the available packet type, run randpktdump --help.


To see program arguments:

randpktdump --help

To see program version:

randpktdump --version

To see interfaces:

randpktdump --extcap-interfaces
Example output
interface {value=randpkt}{display=Random packet generator}

To see interface DLTs:

randpktdump --extcap-interface=randpkt --extcap-dlts
Example output
dlt {number=1}{name=randpkt}{display=Ethernet}

To see interface configuration options:

randpktdump --extcap-interface=randpkt --extcap-config
Example output
arg {number=0}{call=--maxbytes}{display=Max bytes in a packet}{type=unsigned}{range=1,5000}{default=5000}{tooltip=The max number of bytes in a packet}
arg {number=1}{call=--count}{display=Number of packets}{type=long}{default=1000}{tooltip=Number of packets to generate (-1 for infinite)}
arg {number=2}{call=--delay}{display=Packet delay (ms)}{type=long}{default=0}{tooltip=Milliseconds to wait after writing each packet}
arg {number=3}{call=--random-type}{display=Random type}{type=boolflag}{default=false}{tooltip=The packets type is randomly chosen}
arg {number=4}{call=--all-random}{display=All random packets}{type=boolflag}{default=false}{tooltip=Packet type for each packet is randomly chosen}
arg {number=5}{call=--type}{display=Type of packet}{type=selector}{tooltip=Type of packet to generate}
value {arg=5}{value=arp}{display=Address Resolution Protocol}
value {arg=5}{value=usb-linux}{display=Universal Serial Bus with Linux specific header}

To capture:

randpktdump --extcap-interface=randpkt --fifo=/tmp/randpkt.pcapng --capture
To stop capturing CTRL+C/kill/terminate the application.


wireshark(1), tshark(1), dumpcap(1), extcap(4), randpkt(1)


randpktdump is part of the Wireshark distribution. The latest version of Wireshark can be found at

HTML versions of the Wireshark project man pages are available at


Original Author

Dario Lombardo <lomato[AT]>