-
Notifications
You must be signed in to change notification settings - Fork 5
Debug cshargextcap
TheDiveO edited this page Dec 23, 2023
·
3 revisions
The cshargextcap outputs debug logging if it finds an environment variable named CSHARK_LOG (yes, in this case with a capital K) that specifies the path and name of a file to log to.
Since extcap plugins are executed by Wireshark on demand, simply set the environment variable when executing Wireshark from the command line; this setting then will be passed through into cshargextcap upon invoking the extcap.
export CSHARK_LOG=$(pwd)/cshark.log && touch $CSHARK_LOG && wireshark & tail -f $CSHARK_LOGOn Windows, you'll need to go to "System" > "Advanced System Settings" > "Advanced" tab > "Environment Variables". Then set the CSHARK_LOG environment variable for your user.
Alternatively, you can also use setx CSHARK_LOG "..." at a command prompt.
The cshargextcap Wiki for capturing container traffic in Wireshark