[TriLUG] OT: wireshark

Matthew Pusateri mpusateri at wickedtrails.com
Thu Jun 5 11:39:34 EDT 2008 

To start the capture from the command line in Windows, locate the exe  
file.  In my windows install which I believe is the defaults, it's in  
C:\Program Files\Wireshark   Opening a cmd prompt, changing to  
wireshark directory, and typing wireshark -h yields command line args  
in windows.  So if you can start the capture you want in windows via  
the command line, you should be able to schedule it via the windows  
scheduler.

Matt P.

On Jun 5, 2008, at 11:08 AM, Greg Brown wrote:

> More verboseness.
>
> I have, at my disposal, four Wireshark protocol analyzers that run  
> Linux and
> two "backups" that run Windoze.  All my Linux boxes are out in the  
> wild
> assigned to various problems and projects so I'm stuck with using a  
> Windows
> based Wireshark.
>
> I see where, in the gui, I can stop a capture after a certain number  
> of
> minutes but I don't see where I can start a capture at a scheduled  
> time from
> the GUI.  So I was hoping for something GUI based as I have no idea  
> how I
> would start a capture from the command line in XP.
>
> Greg
>
> On Thu, Jun 5, 2008 at 11:04 AM, Matthew Pusateri <
> mpusateri at wickedtrails.com> wrote:
>
>> Wireshark has a -a cmdline argument that specifies when to stop the
>> capture.  So you should be able to crank up wireshark from the  
>> command
>> line.  Or possibly use tshark if no gui.  Not sure if that helps
>> answer your question, as I'm not sure what your trying to achieve.
>> Maximum verbosity please.
>>
>>
>> Matt P.
>>
>>
>> On Jun 5, 2008, at 10:55 AM, Greg Brown wrote:
>>
>>> Does anyone know of a way to schedule a wireshark start and stop
>>> capture the
>>> way you can with a "real" sniffer?
>>>
>>> Greg
>>> --
>>> TriLUG mailing list        :
>> http://www.trilug.org/mailman/listinfo/trilug
>>> TriLUG FAQ  : http://www.trilug.org/wiki/Frequently_Asked_Questions
>>
>> --
>> TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
>> TriLUG FAQ  : http://www.trilug.org/wiki/Frequently_Asked_Questions
>>
> -- 
> TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG FAQ  : http://www.trilug.org/wiki/Frequently_Asked_Questions

More information about the TriLUG mailing list