Forum Discussion

aspindler34_133's avatar
aspindler34_133
Icon for Nimbostratus rankNimbostratus
Jan 06, 2015

TCPDump Question

What is the correct format to export a dumpfile to, to be properly read in wireshark? I am having issues with wireshark complaining about my capture files not being valid.

 

2 Replies

  • nathe's avatar
    nathe
    Icon for Cirrocumulus rankCirrocumulus

    I believe the bigip and wireshark supports many formats.

     

    From SOL13637 you can use .dmp, from SOL411 you can use binary format .bin and I have used .pcap too.

     

    Hope this helps,

     

    N

     

  • It sounds like you may be redirecting the text output to a file, which is not what Wireshark wants. Tcpdump can write the packet data to a file in PCAP format. Use the -w option, then you can import that into Wireshar.