This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Saving Capture Output Defaults

0

I am using Wireshark to monitorall traffic on a switch for our VOIP supplier, and writing to multiple files, creating a new file every 10 minutes. Every time I restart Wireshark I have to add new settings - Is there any way I can save these settings so that it always restarts and makes the minute output files. Looking at help, I guess a batch file might do it - what is the syntax, or can I copy the syntax of my edited job to drop into a batch fle.

Any pointers would be much appreciated.

asked 30 Jan '12, 03:16

keithy's gravatar image

keithy
1111
accept rate: 0%

One Answer:

0

Look into using dumpcap instead. Using a cmd file it could look like this:

"C:Program FilesWiresharkdumpcap.exe" -i 2 -f "not tcp port 3389 and not tcp port 80" -w "net1.cap" -b duration:600 -b files:200

Look at the user's guide for the exact parameters.

answered 30 Jan '12, 03:49

Jaap's gravatar image

Jaap ♦
11.7k16101
accept rate: 14%

Thank you for such a prompt response - will get onto it !

(30 Jan '12, 08:36) keithy