This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Hello,

I want to capture packets passing through multiple interface on linix machine.

I tried 1. "dumpcap -i eth1 eth2 ....." 2. "dumpcap -i eth1 -i eth2 ....." But nothing work.

I don't want to use "dumpcap -i any ...." because it will capture some undesired traffic as well.

I am currently using dumpcap version:

Dumpcap 1.6.6 (SVN Rev Unknown from unknown)

Copyright 1998-2012 Gerald Combs [email protected] and contributors. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with GLib 2.30.1, with libpcap (version unknown), with libz 1.2.5, with POSIX capabilities (Linux).

Running on Linux 3.1.10-gb14-default, with libpcap version 1.1.1, with libz 1.2.5.

Built using gcc 4.6.2."

asked 29 Oct '14, 02:18

ankitkamal's gravatar image

ankitkamal
1111
accept rate: 0%


Dumpcap 1.6.6 (SVN Rev Unknown from unknown)

can you please try a newer version of dumpcap, as I believe the feature to capture on multiple interfaces was implemented later.

Regards
Kurt

permanent link

answered 29 Oct '14, 02:41

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

Yes, that feature was added in Wireshark 1.8.0. See the Release Notes.

(29 Oct '14, 06:36) JeffMorriss ♦

thanks for the link!

(29 Oct '14, 06:39) Kurt Knochner ♦
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×9

question asked: 29 Oct '14, 02:18

question was seen: 3,333 times

last updated: 29 Oct '14, 06:39

p​o​w​e​r​e​d by O​S​Q​A