Wireshark · Wireshark-dev: [Wireshark-dev] Windows dumpcap -i TCP@<IP>

Wireshark-dev: [Wireshark-dev] Windows dumpcap -i TCP@<IP>

From: James Ko <jim.list@xxxxxxxxxxx>

Date: Tue, 18 Sep 2018 00:21:43 +0000

Hi,

I am trying to connect to a remote PCAPNG stream from Windows using the TCP@ socket interface but the connection closes immediately after connecting. The same dumpcap command on linux works just fine to the remote TCP socket.

No errors indicating any failure are printed from dumpcap.exe

C:\>"\Program Files\Wireshark\dumpcap.exe" -i TCP@192.168.1.100 -w -

Capturing on 'TCP@192.168.1.100'

dumcap:

C:\>

On the remote end running in linux I see a connect and disconnect with EPOLLHUP event.

Has anyone else tried or have remote TCP socket connections working with dumpcap in Windows?

James

Follow-Ups:
- Re: [Wireshark-dev] Windows dumpcap -i TCP@<IP>
  - From: Anders Broman

Prev by Date: Re: [Wireshark-dev] Unhandled exception
Next by Date: Re: [Wireshark-dev] Pointers needed for building Wireshark 2.6.3 on a Raspberry Pi model 3B (armv7 processor?)
Previous by thread: Re: [Wireshark-dev] Unhandled exception
Next by thread: Re: [Wireshark-dev] Windows dumpcap -i TCP@<IP>
Index(es):
- Date
- Thread