paxos1977 Asked: 2010-02-06 09:02:21 +0800 CST2010-02-06 09:02:21 +0800 CST 2010-02-06 09:02:21 +0800 CST With wireshark how can I filter by packet size? 772 I can filter for packet lengths using a display filter containing data.len >= XXX, but I'd really like to use a capture filter for this for efficiency... is there a way to do it? wireshark packet-capture 2 Answers Voted Best Answer Kyle Brandt 2010-02-06T09:28:46+08:002010-02-06T09:28:46+08:00 As you said in your comment: greater <length> less <length> They also happen to be in this handy tcpdump cheat sheet I have on my wall. mfinni 2010-02-06T09:16:15+08:002010-02-06T09:16:15+08:00 Wireshark uses the same capture filter syntax as tcpdump, and it doesn't look like that's an option
As you said in your comment:
They also happen to be in this handy tcpdump cheat sheet I have on my wall.
Wireshark uses the same capture filter syntax as tcpdump, and it doesn't look like that's an option