Hi, I'm Seok-jae Yun from Korea. I have a question about using command line(in DOS) I want to sort data filtering with 40000 UDP port. So, I input "wireshark.exe A201205130000.dat -R udp.port==40000 -w please.snoop" but, the Wireshark only filter data, but didn't save as "please.snooop" how can I filter data and save it? Thank you. Seok-jae, Yun asked 25 Oct '12, 05:54  Seok-Jae |
One Answer:
I guess you should use tshark.exe instead of wireshark.exe, and then you can use the parameter "-F <fileformat>" to make it saving the file in a format it supports. If you call "tshark.exe -F" it will give you a list of supported output file formats. answered 25 Oct '12, 05:59  Jasper ♦♦ |
Thank you very much The solution is "tshark.exe -r A201205130000.dat -R udp.port==40000 -F snoop -w please.snoop"
Thank you again