set the MikroTik to send captures to a remote linux box and use a command similar to this..
tcpdump -ns0 udp port 37008 -w - | trafr -s | wireshark -i - that will take the remote capture and read it directly in wireshark (you can also do this in VirtualBox on a laptop or similar..) On Fri, Jul 29, 2016 at 12:25 PM, Josh Luthman <[email protected]> wrote: > Wireshark... It's in standard format. Like tcpdump > > Josh Luthman > Office: 937-552-2340 > Direct: 937-552-2343 > 1100 Wayne St > Suite 1337 > Troy, OH 45373 > > On Jul 29, 2016 3:14 PM, "Jesse Dupont" <[email protected]> > wrote: > >> Can you just pull down the packet capture file and open it in WireShark? >> Might need to give it a .cap extension... >> >> On Fri, Jul 29, 2016 at 1:11 PM, Roy <[email protected]> wrote: >> >>> every so often I need to decode one of the packets captured by the >>> Mikrotik packet sniffer. The only ones I have found online need to have >>> the packet dump edited to leave only the data bytes. On the sample below >>> I have to remove the ASCII on the right and the offset info on the left >>> >>> Does anyone know of a website I can just cut and paste the packet to? >>> >>> Sample packet >>> >>> 0000: 00 90 c2 ce 1f 67 e4 8d 8c 78 fb b7 08 00 45 00 .....g.. .x....E. >>> 0010: 00 38 d8 e9 00 00 ff 01 5f 25 c0 a8 01 01 c0 a8 .8...... _%...... >>> 0020: 01 64 08 00 01 87 da 21 61 05 e1 11 b0 aa 37 f4 .d.....! a.....7. >>> 0030: c1 5a 65 2c b6 1c 74 92 e2 d2 de 07 75 b5 39 e7 .Ze,..t. ....u.9. >>> 0040: 7c 2a 4f 21 64 a7 |*O!d. >>> _______________________________________________ >>> Mikrotik-users mailing list >>> [email protected] >>> http://lists.wispa.org/mailman/listinfo/mikrotik-users >>> >> >> >> >> -- >> >> *Jesse DuPont* >> >> Owner / Network Architect >> >> email: [email protected] >> >> cell: 605-340-0651 >> >> fax: 305-946-0651 >> >> Celerity Networks LLC >> >> PO Box 547 >> >> Spearfish, SD 57783 >> >> Like us! facebook.com/celeritynetworksllc >> >> [image: cid:273145916@30122011-11FC] >> >> _______________________________________________ >> Mikrotik-users mailing list >> [email protected] >> http://lists.wispa.org/mailman/listinfo/mikrotik-users >> >> > _______________________________________________ > Mikrotik-users mailing list > [email protected] > http://lists.wispa.org/mailman/listinfo/mikrotik-users > > -- Mark Grigsby Network Operations Manager Vobis Software Inc. 1863 Pioneer Parkway E. #225 Springfield, OR 97477-3907 Office 541-242-0808 ext 408 TF: 800-787-3806 ext 408 DID: 541-762-1171 Fax: 541-684-0283
_______________________________________________ Mikrotik-users mailing list [email protected] http://lists.wispa.org/mailman/listinfo/mikrotik-users
