擅长:python、mysql、java
<p>您可以使用<a href="https://www.wireshark.org/docs/man-pages/editcap.html" rel="nofollow noreferrer">^{<cd1>}</a>拆分捕获文件。例如:</p>
<pre><code>editcap -A "2017-01-20 10:32:00" -B "2017-01-20 18:44:00" infile.pcap outfile.pcap
</code></pre>