Shark SE400 User's Guide Page 202
- Page / 228
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
193
Appendix B. Files and Folders
B.1. Capture Files
To understand which information will remain available after the captured packets are saved to a capture
file, it’s helpful to know a bit about the capture file contents.
Wireshark uses the pcapng file format as the default format to save captured packets. It is very flexible
but other tools may not support it.
Wireshark also supports the libpcap file format. This is a much simpler format and is well established.
However, it has some drawbacks: it’s not extensible and lacks some information that would be really
helpful (e.g. being able to add a comment to a packet such as “the problems start here” would be
really nice).
In addition to the libpcap format, Wireshark supports several different capture file formats. However,
the problems described above also applies for these formats.
B.1.1. Libpcap File Contents
At the start of each libpcap capture file some basic information is stored like a magic number to
identify the libpcap file format. The most interesting information of this file start is the link layer type
(Ethernet, 802.11, MPLS, etc).
The following data is saved for each packet:
• The timestamp with millisecond resolution
• The packet length as it was “on the wire”
• The packet length as it’s saved in the file
• The packet’s raw bytes
A detailed description of the libpcap file format can be found at: https://wiki.wireshark.org/
Development/LibpcapFileFormat
B.1.2. Not Saved in the Capture File
You should also know the things that are not saved in capture files:
• Current selections (selected packet, …)
• Name resolution information. See Section 7.7, “Name Resolution” for details
Pcapng files can optionally save name resolution information. Libpcap files can’t. Other file formats
have varying levels of support.
• The number of packets dropped while capturing
• Packet marks set with “Edit/Mark Packet”
• Time references set with “Edit/Time Reference”
• The current display filter
- Wireshark User’s Guide 1
- 1. Foreword 8
- 3. Acknowledgements 8
- 4. About this document 9
- Chapter 1. Introduction 10
- Introduction 11
- 1.2. System Requirements 12
- 1.2.1. Microsoft Windows 13
- 1.2.2. UNIX / Linux 13
- 1.3. Where to get Wireshark 14
- Wireshark 14
- 1.6.1. Website 15
- 1.6.2. Wiki 15
- 1.6.3. Q&A Site 15
- 1.6.4. FAQ 15
- 1.6.5. Mailing Lists 16
- 1.6.6. Reporting Problems 16
- 2.3.2. Additional Tasks 19
- 2.3.3. Install Location 19
- 2.3.4. Installing WinPcap 19
- 2.3.7. Update Wireshark 20
- 2.3.8. Update WinPcap 20
- 2.3.9. Uninstall Wireshark 20
- 2.3.10. Uninstall WinPcap 21
- Capturing requires privileges 22
- Chapter 3. User Interface 24
- Figure 3.1. The Main window 25
- 3.3.1. Main Window Navigation 26
- 3.4. The Menu 27
- 3.5. The “File” menu 28
- Figure 3.3. The “File” Menu 29
- Table 3.2. File menu items 30
- 3.6. The “Edit” menu 32
- Figure 3.4. The “Edit” Menu 33
- Table 3.3. Edit menu items 34
- 3.7. The “View” menu 35
- Figure 3.5. The “View” Menu 36
- Table 3.4. View menu items 37
- 3.8. The “Go” menu 40
- Figure 3.6. The “Go” Menu 41
- 3.9. The “Capture” menu 42
- User Interface 43
- 3.10. The “Analyze” menu 44
- Table 3.7. Analyze menu items 46
- 3.11. The “Statistics” menu 47
- 3.12. The “Telephony” menu 50
- 3.13. The “Tools” menu 52
- Figure 3.11. The “Tools” Menu 53
- 3.14. The “Internals” menu 54
- 3.15. The “Help” menu 56
- Figure 3.13. The “Help” Menu 57
- 3.16. The “Main” toolbar 58
- 3.17. The “Filter” toolbar 62
- 3.18. The “Packet List” pane 63
- 3.20. The “Packet Bytes” pane 65
- 3.21. The Statusbar 65
- 4.1. Introduction 68
- 4.2. Prerequisites 68
- 4.3. Start Capturing 68
- $ wireshark -i eth0 -k 69
- Capturing Live Network Data 71
- 4.5.1. Capture frame 73
- 4.5.2. Capture File(s) frame 74
- 4.5.3. Stop Capture… frame 74
- 4.5.4. Display Options frame 74
- 4.5.5. Name Resolution frame 75
- 4.5.6. Buttons 75
- 4.8.1. Add or remove pipes 80
- Microsoft Windows only 82
- 4.12. Link-layer header type 87
- Printing 92
- 5.2.2. Input File Formats 94
- 5.3. Saving captured packets 96
- 5.4. Merging capture files 98
- 5.5. Import hex dump 100
- 5.6. File Sets 103
- 5.7. Exporting data 105
- File" dialog box 108
- 5.8. Printing packets 114
- 5.9. The “Packet Range” frame 115
- 5.10. The Packet Format frame 116
- 6.2. Pop-up menus 120
- Working with captured packets 121
- 6.4.1. Display filter fields 131
- 6.4.2. Comparing values 131
- 6.4.3. Combining expressions 133
- 6.4.4. A common mistake 134
- 6.8. Finding packets 138
- 6.9. Go to a specific packet 139
- 6.10. Marking packets 140
- 6.11. Ignoring packets 140
- Chapter 7. Advanced Topics 143
- Advanced Topics 144
- 7.3. Expert Information 145
- 7.3.1.1. Severity 146
- 7.3.1.2. Group 146
- 7.3.1.3. Protocol 146
- 7.3.1.4. Summary 146
- 7.3.2. “Expert Info” dialog 147
- 7.4. Time Stamps 149
- 7.5. Time Zones 150
- 7.6. Packet Reassembly 153
- 7.7. Name Resolution 154
- 7.8. Checksums 155
- 7.8.2. Checksum offloading 156
- Chapter 8. Statistics 158
- Statistics 159
- Protocol hierarchy columns 161
- 8.4. Conversations 162
- 8.5. Endpoints 163
- 8.7. Service Response Time 166
- 8.9. WLAN Traffic Statistics 170
- Chapter 9. Telephony 172
- 9.3. VoIP Calls 174
- Telephony 176
- 10.1. Introduction 177
- 10.3. Packet colorization 183
- Customizing Wireshark 184
- The first match wins 185
- 10.5. Preferences 190
- 10.5.1. Interface Options 192
- 10.6. Configuration Profiles 193
- 10.7. User Table 195
- 10.8. Display Filter Macros 195
- 10.9. ESS Category Attributes 195
- 10.10. GeoIP Database Paths 195
- 10.11. IKEv2 decryption table 196
- 10.12. Object Identifiers 196
- 10.14. SCCP users Table 197
- 10.18. SNMP users Table 198
- A.1. Packet List Messages 200
- A.2. Packet Details Messages 200
- Wireshark Messages 201
- Appendix B. Files and Folders 202
- Windows folders 204
- Unix/Linux folders 204
- File contents 204
- B.3. Windows folders 208
- D.1. Introduction 211
- Related command line tools 214
- This Document’s License (GPL) 225
Related products and manuals for Vacuum cleaners Shark SE400
Vacuum cleaners Shark 7.2 VDC Specifications
(34 pages)
(34 pages)
Vacuum cleaners Shark 7.2 VDC Service Manual
(23 pages)
(23 pages)
Vacuum cleaners Shark NV80 Specifications
(16 pages)
(16 pages)
Vacuum cleaners Shark NV42 Specifications
(32 pages)
(32 pages)
Vacuum cleaners Shark V1930 User's Guide
(12 pages)
(12 pages)
Vacuum cleaners Shark UV300 Specifications
(32 pages)
(32 pages)
Vacuum cleaners Shark NV22L Specifications
(32 pages)
(32 pages)
Vacuum cleaners Shark NP318 Specifications
(16 pages)
(16 pages)
Vacuum cleaners Shark ZZ550 Specifications
(20 pages)
(20 pages)
Vacuum cleaners Shark SV780 14 User's Guide
(24 pages)
(24 pages)
Vacuum cleaners Shark NH15 Specifications
(32 pages)
(32 pages)
Vacuum cleaners Shark EP601 Owner's Manual
(35 pages)
(35 pages)
Vacuum cleaners Shark V1950SP User's Guide
(14 pages)
(14 pages)
Vacuum cleaners Shark KD451T Specifications
(20 pages)
(20 pages)
Vacuum cleaners Shark V1725 Specifications
(16 pages)
(16 pages)
© 2020, manymanuals.com. All rights reserved. | 1.171 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals