Does Wirehark in version 2.2x still use the PCs system files located in the Folder \etc for name resolution? I had tested it with older Versions (1.8, 1.10) and there I could resolve ip addresses to names via etc\hosts and port number to names via etc\Services. Is this still working for Windows or Linux? Now I can't get it working. This question is marked "community wiki". asked 07 Apr '17, 01:02  wiresharky |
One Answer:
Yes, this is still possible. Under normal circumstances the file in /etc/hosts should be file, UNLESS the "only use the profile 'hosts' file" is checked, or your running in a build directory, or you've set the environment variable WIRESHARK_DATA_DIR. So there are a lot of parameters influencing the actual choice of hosts file to read. And now I'm talking !WIN32 only. answered 07 Apr '17, 02:40  Jaap ♦ |
