Wireshark · Ethereal-users: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal

Ethereal-users: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: "Richard Ginski" <rginski@xxxxxxxxxxxxxxxxx>

Date: Fri, 11 Apr 2003 12:31:16 -0400

Well we tried using  tcpdump -w "output_file" host "IP address" but received a different error message this time when trying to open the file with Ethereal:

"The file "file name" is a capture for a network type that Ethereal doesn't support"

I don't know if the list accepts attachments but I though I would try anyway.

Any help is greatly appreciated.

>>> Gerald Combs <gerald@xxxxxxxxxxxx> 04/11/03 11:25AM >>>
On Fri, 11 Apr 2003, Richard Ginski wrote:

> On a Windows 2000 machine, we have been redirecting output from TCPDUMP to a text file. Unfortunately, when trying to open the files with Ethereal , we receive the error message:
> 
> "The file "filename" is not a capture file in a format Ethereal understand"
> 
> What could we be doing wrong?
> 
> We have tried Ethereal 0.9.7 and 0.9.11
> 
> Running TCPDUMP command:
> 
> tcpdump host "IP address" > text file
> 
> Thanks in advance for your help.

Ethereal isn't able to parse the text output of tcpdump.  Try 

    tcpdump -w "output_file" host "IP address"

instead.  This will generate a binary dump file that Ethereal can read.

Attachment: 20275
Description: Binary data

Follow-Ups:
- Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
  - From: Guy Harris

Prev by Date: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
Next by Date: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
Previous by thread: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
Next by thread: Re: [Ethereal-users] Problems Importing TCPDUMP Output into Ethereal
Index(es):
- Date
- Thread