I am writing a tap in Lua, but could also write it in C if necessary. I would like to know in the tap.packet was called as a result of a live capture or file load. I know that in the main Wireshark code, it uses capture_opts->real_time_mode, but I can't seem to find how to access this in a tap.
asked 01 Feb '16, 13:51
What is it that your tap would do differently in those two cases?
answered 01 Feb '16, 18:30
Guy Harris ♦♦