The capture file is in a format which is understood by Ethereal and several
other programs, none of which is an editor. It is not readable text.
If you want to examine the results of your capture without having Etheral
running you need to print the capture to a file in text format. That file
will be readable with an editor.
--
Richard Urwin, Software Design Engineer
Schenck Test Automation
Braemar Court, 1311b Melton Road, Syston, UK.
rurwin@xxxxxxxxxxxxx
-----Original Message-----
From: Beatriz Silva [mailto:beatriz_hargrave@xxxxxxxx]
Sent: Wednesday, June 26, 2002 10:58 AM
To: ethereal-users@xxxxxxxxxxxx
Subject: Re: [Ethereal-users] Capture file
Thanks Guy !
Now I have found the following files in the tmp directory:
etherXXXX7FmSGU
etherXXXXG21vKA
etherXXXXvVHyuE
etherXXXXzV301P
But I could not understand the data they contain (I openned them in a normal
text editor - kwrite) ... In what type of program shoul I open them ?
I runned the Ethereal again and the first file changed its name. Now I have:
etherXXXX1NzDLX
etherXXXXG21vKA
etherXXXXvVHyuE
etherXXXXzV301P
Do you understand what this numbers and letters after the XXXX mean ?
Thank you,
Beatriz
----- Original Message -----
From: Guy Harris <guy@xxxxxxxxxx>
Date: Tue, 25 Jun 2002 11:49:51 -0700
To: Beatriz Silva <beatriz_hargrave@xxxxxxxx>
Subject: Re: [Ethereal-users] Capture file
> On Tue, Jun 25, 2002 at 06:53:30AM -0500, Beatriz Silva wrote:
> > Is there a capture file (that is used by GUI Ethereal to show the
> > packet data)?
>
> I assume you're referring to "live" captures, i.e. captures done in
> Ethereal itself, rather than capture files that you tell Ethereal to
> read (for which the answer is obviously "yes").
>
> If so, the answer is "yes"; *all* Ethereal captures are in files.
>
> > What is its name ?
>
> Live capture files don't have *a* name; they are put in temporary files,
> whose name is generated on a per-capture basis.
>
> The capture file will typically be in "/tmp" or "/var/tmp" on UNIX, and
> "C:\TEMP" or perhaps, on Windows 2000, in your per-user temporary file
> directory on Windows, although it might be a different directory
> depending on the setting of the TMPDIR environment variable or, on
> Windows, on the setting of the TEMP environment variable.
>
> The name will begin with "etherXXXX" and have a letter and some digits
> after it.
>
> _______________________________________________
> Ethereal-users mailing list
> Ethereal-users@xxxxxxxxxxxx
> http://www.ethereal.com/mailman/listinfo/ethereal-users
>
--
__________________________________________________________
Sign-up for your own FREE Personalized E-mail at Mail.com
http://www.mail.com/?sr=signup
Save up to $160 by signing up for NetZero Platinum Internet service.
http://www.netzero.net/?refcd=N2P0602NEP8
_______________________________________________
Ethereal-users mailing list
Ethereal-users@xxxxxxxxxxxx
http://www.ethereal.com/mailman/listinfo/ethereal-users
_____________________________________________________________________
This message has been checked for all known viruses by UUNET delivered
through the MessageLabs Virus Control Centre. For further information visit
http://www.uk.uu.net/products/security/virus/
________________________________________________________________________
This email has been scanned for all viruses by the MessageLabs SkyScan
service. For more information on a proactive anti-virus service working
around the clock, around the globe, visit http://www.messagelabs.com
________________________________________________________________________
