diff options
author | Christoph Wurm <wurm@elastic.co> | 2017-07-19 14:24:47 +0000 |
---|---|---|
committer | Michael Mann <mmann78@netscape.net> | 2017-10-15 00:58:42 +0000 |
commit | af09db8bd3f0defb319df00fa69cd82044ac1007 (patch) | |
tree | 2e7cd0dcea7891755cf88e202fa30327fbdfed5c /ui/qt/manage_interfaces_dialog.cpp | |
parent | ddf65262562052ae132b2a4c9cf89b69ed9f1d5f (diff) |
Tshark: Optional packet summary for Elasticsearch
Currently, the Elasticsearch output exports the packet details and,
if -x is specified, the raw hex data.
This change adds the option of exporting the packet summary as well.
The default stays the same (packet details only), but now the existing
-P switch turns on printing of the packet summary. It also turns off
printing packet details, which can be turned back on with -V to print
both, and combined with -x to print all three: summary, details and
raw hex.
The packet summary is especially useful when exploring and visualizing
the data in Kibana, e.g. by displaying the summary "Info" field/column
in a table, as in the Wireshark GUI.
Change-Id: I2030490cfdd905572397bc3d5457ba49d805a5c4
Reviewed-on: https://code.wireshark.org/review/22716
Petri-Dish: Michael Mann <mmann78@netscape.net>
Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org>
Reviewed-by: Michael Mann <mmann78@netscape.net>
Diffstat (limited to 'ui/qt/manage_interfaces_dialog.cpp')
0 files changed, 0 insertions, 0 deletions