I observed that "dumpcap -D" on the older versions of the dumpcap doesn't print out the IPAddresses of the interfaces. But the wireshark is still able to display the IPAddresses on it's interface list. Can anyone please let me know the tool that wireshark uses for this purpose?(in the newer versions, deleting dumpcap.exe apparently will cause wireshark's interface window go blank) Here are the details of dumpcap -v:
------
Dumpcap 0.99.2 (SVN Rev 18752)
Copyright 1998-2006 Gerald Combs <
gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled with with GLib 2.6.6, with WinPcap (version unknown), with libz 1.2.3,
with libpcre 6.4, with Net-SNMP , with ADNS, with Lua 5.1.
Running with WinPcap version 3.1 (packet.dll version 3, 1, 0, 27), based on libpcap version 0.9[.x] on Windows XP S, bui
ld 2600.
See
http://www.wireshark.org for more information.
--------
I am preparing my algorithm in such a way that the feature that I write can be used with any version of wireshark. Thanks.
On Wed, Jun 18, 2008 at 2:13 PM, Vinay Chilakamarri <
vinay.chilakamarri@xxxxxxxxx> wrote:
Thanks for those links. I hit upon them a while ago when I was reading up a 'pcap' entry in wiki. I tried the some getInterfaces method on jpcap and could get the exact order and detail of the interfaces reflected by dumpcap. may be it's got to do with the winpcap.dll file that they both commonly use.
On Tue, Jun 17, 2008 at 7:59 PM, Guy Harris <
guy@xxxxxxxxxxxx> wrote:
On Jun 13, 2008, at 3:21 PM, Vinay Chilakamarri wrote:
> Also, do you have any suggestions for the older wireshark versions
> that didn't use dumpcap for capturing?
Write your own code, perhaps using jpcap:
http://jpcap.sourceforge.net/
or jNetPCAP:
http://jnetpcap.sourceforge.net/
wrapped around WinPcap, using pcap_findalldevs().
