missing capture

I just installed wireshark and have no capture, or display filters active.

Wireshark is missing a lot of messages that do show up on Microsoft Network Monitor. e.g. Some that are missing are marked as DNS and others as TCP in the Microsoft application.

I presume I've got something set up wrong, any suggestions how to get the complete capture in wireshark too would be much appreciated :)

asked 03 Dec '11, 15:45

Covert Coven
1●1●1●1
accept rate: 0%

What interfaces are you trying to capture on?

(04 Dec '11, 01:09) grahamb ♦

One Answer:

active answers oldest answers newest answers popular answers

Hey thanks for wanting to help :) I worked it out myself just now, because I exported the files captured in each and then imported them in the other: D'oh... I didn't have the DNS protocol enabled on wireshark. It's the first time I used it so it's all new to me ;)

permanent link

answered 04 Dec '11, 02:03

Covert Coven
1●1●1●1
accept rate: 0%

Your answer

toggle preview

community wiki:

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

*italic* or _italic_
**bold** or __bold__
link:[text](http://url.com/ "title")
image?![alt text](/path/img.jpg "title")
numbered list: 1. Foo 2. Bar
to add a line break simply add two spaces to where you would like the new line to be.
basic HTML tags are also supported

learn more about Markdown

Question tags:

dns ×109
missing ×42
filters ×40
setup ×21

question asked: 03 Dec '11, 15:45

question was seen: 2,273 times

last updated: 04 Dec '11, 02:03

missing capture

Follow this question

You have a trillion packets.

You need to see four of them.

Don't have Wireshark?

Related questions