Wireshark · Wireshark-dev: Re: [Wireshark-dev] Add BPF filtering to Wiretap?

Wireshark-dev: Re: [Wireshark-dev] Add BPF filtering to Wiretap?

From: Guy Harris <guy@xxxxxxxxxxxx>

Date: Mon, 5 Feb 2007 15:14:35 -0800


On Feb 5, 2007, at 12:11 PM, Gerald Combs wrote:

Would it make sense to add BPF filtering to Wiretap via
pcap_offline_filter()?

Would it make sense to add BPF filtering to Wiretap via bpf_filter(),which is available in all version of libpcap (and depended on by atleast some applications), even if it's not documented?

One problem is that if there isn't a BPF DLT_ value for the file'slink-layer type, that wouldn't work.

References:
- [Wireshark-dev] Add BPF filtering to Wiretap?
  - From: Gerald Combs

Prev by Date: Re: [Wireshark-dev] [PATCH] Fixup for a segfault with gtk1.2
Next by Date: Re: [Wireshark-dev] Wireshark w/ MSVC++ 2005 EE fails to capture
Previous by thread: [Wireshark-dev] Add BPF filtering to Wiretap?
Next by thread: Re: [Wireshark-dev] range_string problem
Index(es):
- Date
- Thread