Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-bugs: [Wireshark-bugs] [Bug 1373] Info field remains truncated monitoring UDP 514 IDS/

Date: Fri, 16 Feb 2007 13:42:41 +0000 (GMT)
http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1373





------- Comment #7 from jmayer@xxxxxxxxx  2007-02-16 13:42 GMT -------
Let me see if I understand you correctly: Because there is no useful realtime
syslog viewer for Linux (or Unix), you want to add a feature to Wireshark to
display captured syslog messages in full length.

If I understand you correctly, then I must admit that I tend to close this
feature request because it doesn't really make much sense, as there are several
alternatives available.

Just open an xterm (konsole, ... whatever) and do a "tail -f
/var/log/<logfile(s)>. What's the disadvantage to doing that. Or run "tshark
udp and port 514 | grep syslog" (or whatever).

Actually, there are packets that will generate info fields that fill a whole
screen - it would (in most cases) make wireshark *worse*, not better. So if you
can't give good reasons where I'm mistaken, I'll close this bug again as
WONTFIX. 


-- 
Configure bugmail: http://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.