Wireshark · Wireshark-dev: Re: [Wireshark-dev] support for Bluetooth protocol live capture

Wireshark-dev: Re: [Wireshark-dev] support for Bluetooth protocol live capture

From: Andrei Emeltchenko <andrei.emeltchenko.news@xxxxxxxxx>

Date: Mon, 31 Oct 2011 15:55:45 +0200

Hi,

On Fri, Oct 28, 2011 at 6:37 AM, Guy Harris <guy@xxxxxxxxxxxx> wrote:
>
> On Oct 27, 2011, at 7:50 PM, vijay wrote:
>
>> Can anyone tell me if wireshark support live capture of bluetooth traffic.
>
> On Linux, yes.
>
>> Wireshark wiki says libpcap supports live capture of bluetooth packets , Wireshark can read pcap files containing bluetooth traffic.
>> But wireshark cannot capture bluetooth traffic. I donot understand why it is so?
>
> It's so because nobody'd bothered to update the CaptureSetup/Bluetooth page on the Wireshark wiki to indicate that Bluetooth capturing is now supported if Wireshark is using a sufficiently-recent version of libpcap and running on a system with a kernel with the Affix Bluetooth stack (which I think is the basis of the official Bluetooth stack that's now a standard part of the kernel). :-)

This is not exactly correct. Affix was a competing stack from Nokia
which never came to official Linux kernel despite some parts were
rewritten for bluez.

Regards,
Andrei

>
>> wont the above 2 features be sufficient for live capture?
>
> Yes, so I updated the page.
>

Follow-Ups:
- Re: [Wireshark-dev] support for Bluetooth protocol live capture
  - From: Guy Harris

References:
- [Wireshark-dev] support for Bluetooth protocol live capture
  - From: vijay
- Re: [Wireshark-dev] support for Bluetooth protocol live capture
  - From: Guy Harris

Prev by Date: Re: [Wireshark-dev] Affix bluetooth stack
Next by Date: Re: [Wireshark-dev] Same protocol dissector in built-in and plugin form coexisting under different names?
Previous by thread: Re: [Wireshark-dev] support for Bluetooth protocol live capture
Next by thread: Re: [Wireshark-dev] support for Bluetooth protocol live capture
Index(es):
- Date
- Thread