|
Server : Apache/2.2.2 (Fedora) System : Linux App1.pathumtani.go.th 2.6.20-1.2320.fc5smp #1 SMP Tue Jun 12 19:40:16 EDT 2007 i686 User : apache ( 48) PHP Version : 5.2.9 Disable Function : NONE Directory : /usr/share/wireshark/ |
Upload File : |
<?xml version="1.0" ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>capinfos - The Wireshark Network Analyzer 0.99.5</title> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <link rev="made" href="mailto:root@localhost" /> </head> <body style="background-color: white"> <p><a name="__index__"></a></p> <!-- INDEX BEGIN --> <!-- <ul> <li><a href="#name">NAME</a></li> <li><a href="#synopsys">SYNOPSYS</a></li> <li><a href="#description">DESCRIPTION</a></li> <li><a href="#options">OPTIONS</a></li> <li><a href="#see_also">SEE ALSO</a></li> <li><a href="#notes">NOTES</a></li> <li><a href="#authors">AUTHORS</a></li> </ul> --> <!-- INDEX END --> <p> </p> <h1><a name="name">NAME</a></h1> <p>capinfos - Prints information about capture files</p> <p> </p> <hr /> <h1><a name="synopsys">SYNOPSYS</a></h1> <p><strong>capinfos</strong> [ <strong>-t</strong> ] [ <strong>-c</strong> ] [ <strong>-s</strong> ] [ <strong>-d</strong> ] [ <strong>-u</strong> ] [ <strong>-a</strong> ] [ <strong>-e</strong> ] [ <strong>-y</strong> ] [ <strong>-i</strong> ] [ <strong>-z</strong> ] [ <strong>-h</strong> ] <<em>infile</em>> <em>...</em></p> <p> </p> <hr /> <h1><a name="description">DESCRIPTION</a></h1> <p><strong>Capinfos</strong> is a program that reads one or more capture files and returns some or all available statistics of each <<em>infile</em>>.</p> <p>The user specifies which statistics to report by specifying flags corresponding to the statistic. If no flags are specified, <strong>Capinfos</strong> will report all statistics available.</p> <p><strong>Capinfos</strong> is able to detect and read the same capture files that are supported by <strong>Wireshark</strong>. The input files don't need a specific filename extension; the file format and an optional gzip compression will be automatically detected. Near the beginning of the DESCRIPTION section of <code>wireshark(1)</code> or <a href="http://www.wireshark.org/docs/man-pages/wireshark.html">http://www.wireshark.org/docs/man-pages/wireshark.html</a> is a detailed description of the way <strong>Wireshark</strong> handles this, which is the same way <strong>Capinfos</strong> handles this.</p> <p> </p> <hr /> <h1><a name="options">OPTIONS</a></h1> <dl> <dt><strong><a name="item__2dt">-t</a></strong> <dd> <p>Displays the capture type of the capture file.</p> </dd> </li> <dt><strong><a name="item__2dc">-c</a></strong> <dd> <p>Counts the number of packets in the capture file.</p> </dd> </li> <dt><strong><a name="item__2ds">-s</a></strong> <dd> <p>Displays the size of the file, in bytes. This reports the size of the capture file itself.</p> </dd> </li> <dt><strong><a name="item__2dd">-d</a></strong> <dd> <p>Displays the total length of all packets in the file, in bytes. This counts the size of the packets as they appeared in their original form, not as they appear in this file. For example, if a packet was originally 1514 bytes and only 256 of those bytes were saved to the capture file (if packets were captured with a snaplen or other slicing option), <strong>Capinfos</strong> will consider the packet to have been 1514 bytes.</p> </dd> </li> <dt><strong><a name="item__2du">-u</a></strong> <dd> <p>Displays the capture duration, in seconds. This is the difference in time between the earliest packet seen and latest packet seen.</p> </dd> </li> <dt><strong><a name="item__2da">-a</a></strong> <dd> <p>Displays the start time of the capture. <strong>Capinfos</strong> considers the earliest timestamp seen to be the start time, so the first packet in the capture is not necessarily the earliest - if packets exist ``out-of-order'', time-wise, in the capture, <strong>Capinfos</strong> detects this.</p> </dd> </li> <dt><strong><a name="item__2de">-e</a></strong> <dd> <p>Displays the end time of the capture. <strong>Capinfos</strong> considers the latest timestamp seen to be the end time, so the last packet in the capture is not necessarily the latest - if packets exist ``out-of-order'', time-wise, in the capture, <strong>Capinfos</strong> detects this.</p> </dd> </li> <dt><strong><a name="item__2dy">-y</a></strong> <dd> <p>Displays the average data rate, in bytes</p> </dd> </li> <dt><strong><a name="item__2di">-i</a></strong> <dd> <p>Displays the average data rate, in bits</p> </dd> </li> <dt><strong><a name="item__2dz">-z</a></strong> <dd> <p>displays the average packet size, in bytes</p> </dd> </li> <dt><strong><a name="item__2dh">-h</a></strong> <dd> <p>Prints the help listing and exits.</p> </dd> </li> </dl> <p> </p> <hr /> <h1><a name="see_also">SEE ALSO</a></h1> <p>tcpdump(8), pcap(3), wireshark(1)>, mergecap(1), editcap(1), tshark(1), <code>dumpcap(1)</code></p> <p> </p> <hr /> <h1><a name="notes">NOTES</a></h1> <p><strong>Capinfos</strong> is part of the <strong>Wireshark</strong> distribution. The latest version of <strong>Wireshark</strong> can be found at <a href="http://www.wireshark.org">http://www.wireshark.org</a>.</p> <p>HTML versions of the Wireshark project man pages are available at: <a href="http://www.wireshark.org/docs/man-pages">http://www.wireshark.org/docs/man-pages</a>.</p> <p> </p> <hr /> <h1><a name="authors">AUTHORS</a></h1> <pre> Original Author -------- ------ Ian Schorr <ian[AT]ianschorr.com></pre> <pre> Contributors ------------ Gerald Combs <gerald[AT]wireshark.org></pre> </body> </html>