Does Wireshark support a format that doesn't require TCP/UDP/Ethernet he开发者_开发知识库aders in every packet?
Any other (non-pcap) formats wireshark supports would be appreciated. I need to get header-less data into wireshark for further examination.
Apparently this IS possible with newer versions. See their How To Dissect Anything wiki entry.
Basically, in the pcap header you set the network linktype DLT to USER DLT #147 decimal. Pcap files are simple to create.
Then in wireshark Edit->Preferences->Protocols->DLT_USER->Edit Encapsulations Table, fill in the GUI dialog. And voila! it parses raw packets.
UPDATE: This doesn't support some protocols (like DNS). But you can possibly append fake headers using text2pcap (development version as of Dec-2010).
 
         
                                         
                                         
                                         
                                        ![Interactive visualization of a graph in python [closed]](https://www.devze.com/res/2023/04-10/09/92d32fe8c0d22fb96bd6f6e8b7d1f457.gif) 
                                         
                                         
                                         
                                         加载中,请稍侯......
 加载中,请稍侯......
      
精彩评论