Wireshark stops after capturing a few seconds using version Version 2.2.6 (v2.2.6-0-g32dac6a) - 64bits Parameters : - OS = Windows 7 Pro, 8G RAM but had similar results on Windows 2012 with 128G of RAM ; - Network Interfaces are 10Gigs ; - Very high bandwidth environment ; - I capture only the first 68 bytes of each packet ; - splitted into many 50Megs files (usually doesnt get past 2nd one) ; - update list of packet in realtime is disabled so is autoscroll Any ideas on how I could prevent it from crashing ? Thank you asked 26 May '17, 11:53  andguay |
One Answer:
You might want to consider other tools to capture in such high bandwidth environments. As a first attempt have a look at dumpcap, the capture engine which Wireshark uses. Running it in a shell could help keeping the capture going. If you still are met with packet drops or other problems maybe another environment and tool may be beneficial, I'm referring to n2disk from ntop here. answered 26 May '17, 12:55  Jaap ♦ |
