Wireshark · Wireshark-users: [Wireshark-users] regarding tshark option -z io, stat, COUNT(tcp.analysis.duplicate

Wireshark-users: [Wireshark-users] regarding tshark option -z io, stat, COUNT(tcp.analysis.duplic

From: Rikard Svenningsen <wireshark@xxxxxxxxxxxxxx>

Date: Sat, 28 Nov 2009 14:23:20 +0100

Hi
I am trying to use tshark for analysis of some tcp error on my network.
I intent to use the following command:
tshark -r FileToAnalyse -q -z io,stat,120,COUNT(tcp.analysis.duplicate_ack)tcp.analysis.duplicate_ack,COUNT(tcp.analysis.retransmission)tcp.analysis.retransmission

The command: tshark ....... tcp.analysis.retransmission is supposed to be on one line to get it work.
I tried:
-z "io,stat,120,COUNT(tcp.analysis.retransmission)tcp.analysis.retransmission"
and
-z 'io,stat,120,COUNT(tcp.analysis.retransmission)tcp.analysis.retransmission'
and
-z io,stat,120,COUNT\(tcp.analysis.retransmission\)tcp.analysis.retransmission

If I use it just like this:
-z io,stat,120,COUNT(tcp.analysis.retransmission)tcp.analysis.retransmission

I get this:
bash: syntax error near unexpected token `('

Only if I run the command in a DOS prompt in Windows, it will work fine.
-z io,stat,120,COUNT(tcp.analysis.retransmission)tcp.analysis.retransmission

--
Best regards
Rikard Svenningsen
Denmark

Follow-Ups:
- Re: [Wireshark-users] regarding tshark option -z io, stat, COUNT(tcp.analysis.duplicate_ack)tcp.analysis.duplicate_ack
  - From: j.snelders

Prev by Date: Re: [Wireshark-users] R: Re: add timestamp to fieldlist in wireshark
Next by Date: Re: [Wireshark-users] regarding tshark option -z io, stat, COUNT(tcp.analysis.duplicate_ack)tcp.analysis.duplicate_ack
Previous by thread: Re: [Wireshark-users] R: Re: add timestamp to fieldlist in wireshark
Next by thread: Re: [Wireshark-users] regarding tshark option -z io, stat, COUNT(tcp.analysis.duplicate_ack)tcp.analysis.duplicate_ack
Index(es):
- Date
- Thread