diff options
author | Gerald Combs <gerald@wireshark.org> | 2011-03-24 22:47:57 +0000 |
---|---|---|
committer | Gerald Combs <gerald@wireshark.org> | 2011-03-24 22:47:57 +0000 |
commit | fcf51fc73b9f99da83914168e493f4f07a6a02d5 (patch) | |
tree | 982df185f08cae7b0a892b37069a03cd3721edc6 /doc/editcap.pod | |
parent | 57833dc7786403cf833e3058e6c238ea16813576 (diff) |
Add initial pcapng name resolution record support. Wireshark has read
support; TShark has read+write support. Additionally TShark can read a
"hosts" file and write those records to a capture file.
This uses "struct addrinfo" in many places and probably won't compile on
some platforms.
svn path=/trunk/; revision=36318
Diffstat (limited to 'doc/editcap.pod')
-rw-r--r-- | doc/editcap.pod | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/doc/editcap.pod b/doc/editcap.pod index bf699723b5..deea34ea76 100644 --- a/doc/editcap.pod +++ b/doc/editcap.pod @@ -10,6 +10,8 @@ S<[ B<-c> E<lt>packets per fileE<gt> ]> S<[ B<-C> E<lt>choplenE<gt> ]> S<[ B<-E> E<lt>error probabilityE<gt> ]> S<[ B<-F> E<lt>file formatE<gt> ]> +S<[ B<-W> E<lt>file format optionE<gt>]> +S<[ B<-H> E<lt>input hosts file<gt> ]> S<[ B<-A> E<lt>start timeE<gt> ]> S<[ B<-B> E<lt>stop timeE<gt> ]> S<[ B<-h> ]> @@ -150,6 +152,30 @@ B<Editcap> can write the file in several formats, B<editcap -F> provides a list of the available output formats. The default is the B<libpcap> format. +=item -W E<lt>file format optionE<gt> + +Save extra information in the file if the format supports it. For +example, + + -F pcapng -W n + +will save host name resolution records along with captured packets. + +Future versions of Wireshark may automatically change the capture format to +B<pcapng> as needed. + +The argument is a string that may contain the following letter: + +B<n> write network address resolution information (pcapng only) + +=item -H E<lt>input "hosts" fileE<gt> + +Read a list of address to host name mappings and include the result in +the output file. Implies B<-W n>. + +The input file format is described at +L<http://en.wikipedia.org/wiki/Hosts_%28file%29>. + =item -A E<lt>start timeE<gt> Saves only the packets whose timestamp is on or after start time. |