I'm trying to setup wireshark on a server in our environment. I have downloaded the most current version at this time 1.8.4 and installed the WinPcap that comes with it. I have tried a few different settings to see if i can get different behavior, i have been unsuccessful. I have set the following parameters and it will work for about 20 minutes and then wireshark crashes with C++ runtime issues. Next File Every 15 minutes Ring buffer with 2 files I have tried varying these values to see if any difference no luck. Wireshark seems to always crash after about 20 minutes. I'm looking to get this working for debugging we need on a server. Thanks, Greg asked 07 Dec '12, 12:25  absoluteg449 |
One Answer:
There are several of these report here and it's most certainly a problem with memory usage.
One user reported to have fixed the problem, by re-installing Wireshark.
Solution: Don't capture with Wireshark, use dumpcap instead.
After you have captured the data with dumpcap, you can analyze the files with Wireshark. Regards answered 07 Dec '12, 12:37  Kurt Knochner ♦ |
This is what i see when it breaks: Problem signature: Problem Event Name: APPCRASH Application Name: wireshark.exe Application Version: 1.8.4.46250 Application Timestamp: 50b66046 Fault Module Name: libglib-2.0-0.dll Fault Module Version: 2.32.2.0 Fault Module Timestamp: 4faa7bfc Exception Code: 40000015 Exception Offset: 000000000004fd12 OS Version: 6.1.7600.2.0.0.272.7 Locale ID: 1033 Additional Information 1: 26cb Additional Information 2: 26cb520882fc9cea3b5c8c04fa568662 Additional Information 3: 2ad2 Additional Information 4: 2ad2e6f5b836401c72b8f768cc4a55f1