Wireshark · Ethereal-users: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal

Ethereal-users: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Ian Schorr <spamcontrol2@xxxxxxxxxxx>

Date: Fri, 11 Apr 2003 11:22:51 -0400

Richard,

The problem here is that you're creating a text file of sometcpdump-decoded output, and not creating a tcpdump-format binary capturefile. You could possibly interpret the text file using the text2pcaptool, though that may be painful and missing a LOT of information.You'll probably want to save the file to libpcap/tcpdump format usingthe "-w" option, in which case you should be able to open the filesnatively with ethereal.


Ian

Richard Ginski wrote:

On a Windows 2000 machine, we have been redirecting output from TCPDUMP to a text file. Unfortunately, when trying to open the files with Ethereal , we receive the error message:

"The file "filename" is not a capture file in a format Ethereal understand"

What could we be doing wrong?

We have tried Ethereal 0.9.7 and 0.9.11

Running TCPDUMP command:

tcpdump host "IP address" > text file

Thanks in advance for your help.

_______________________________________________
Ethereal-users mailing list
Ethereal-users@xxxxxxxxxxxx
http://www.ethereal.com/mailman/listinfo/ethereal-users

References:
- [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
  - From: Richard Ginski

Prev by Date: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
Next by Date: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
Previous by thread: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
Next by thread: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
Index(es):
- Date
- Thread