Wireshark-bugs: [Wireshark-bugs] [Bug 12884] sshdump only captures a few packets
Date: Tue, 13 Sep 2016 11:35:36 +0000

Comment # 5 on bug 12884 from
(In reply to Graham Bloice from comment #4)
> With the change from 17682, using tcpdump now (if I limit the capture to 100
> packets) gets one packet and then displays an error when the capture stops
> similar to "Frame 2 too long (1006634257 bytes)", then a second error "Error
> by extcap pipe: tcpdump: listening on eth0, link-type EN10MB (Ethernet),
> capture size 65535 bytes 100 packets captured 102 packets received by filter
> 0 packets dropped by kernel".
> 
> Running sshdump directly (from the run\RelWithDebInfo directory so that the
> Wireshark DLL's are found) gives no output at all, --help does give output.
> 

With directly you mean with the complete command line, don't you? With --debug
you should see the invocation and remote command line. Can you paste here the
command you issued?

> Note all the above tests are being run from the build directory, not an
> installed version.

Same for me.


You are receiving this mail because:
  • You are watching all bug changes.