This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Configuration Parameters for rpcapd

0

I am looking in chapter 3 of the study guide and i am looking at the list of rpcapd parameters for rpcapd. How do I get to the command line in rpcapd in order to change parameters?

asked 09 Nov '10, 06:07

ChumMaster's gravatar image

ChumMaster
1111
accept rate: 0%

See Jaap's answer below. Also see http://wiki.wireshark.org/CaptureSetup/WinPcapRemote.

(09 Nov '10, 14:28) lchappell ♦

Thanks. Also this part of the Wireshark User's Guide could be helpful, although it could do more explaining rpcapd itself: http://www.wireshark.org/docs/wsug_html_chunked/ChCapInterfaceRemoteSection.html

(10 Nov '10, 00:16) Jaap ♦

One Answer:

1

From the manual :

The service has a set of "standard" parameters, i.e. it it launched with the "-d" flag (in orde to make it running as a service) and the "-f rpcapd.ini" flag. The user can create a file called rpcapd.ini in the same folder of the executable, and put the configuration commands in there.

answered 09 Nov '10, 06:48

Jaap's gravatar image

Jaap ♦
11.7k16101
accept rate: 14%

Thanks Jaap, your answer and the wiki you pointed out helped me better understand how to use this feature....now it is time to play.

(09 Nov '10, 16:38) ChumMaster