Menu
Just click on the File menu option and select Save As. By default Wireshark will save the packet trace in libpcap format. This is a filename with a. pcap extension.
from the main menu. Display filters can be created or edited by selecting Manage Display Filters from the display filter bookmark menu or Analyze → Display Filters… from the main menu. Wireshark will open the corresponding dialog as shown in Figure 6.10, “The “Capture Filters” and “Display Filters” dialog boxes”.
Information about the folders used for capture files can be found in Appendix B, Files and Folders. A temporary file will be created and used (this is the default). After capturing is stopped this file can be saved later under a user specified name.
Filtering Packets The most basic way to apply a filter is by typing it into the filter box at the top of the window and clicking Apply (or pressing Enter). For example, type “dns” and you'll see only DNS packets. When you start typing, Wireshark will help you autocomplete your filter.
Exporting data
Just select Displayed in the Packet Range frame.
Note that with newer builds of Wireshark for Windows, this is available only with "Export Specified Packets", not with "Save" or "Save as" options.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With