Yet another tutorial on the version of the Wireshark open source network monitor program controlled from a text terminal. Called Tshark, it's operation is controlled by switches provided on the command line which starts the program.
The tutorial starts from basics. It then gives a coverage of the fetch filter switch (-f), the display filter switch (-Y), and the format control switch (-T) and its associated (-e) switch combinations. Examples of useful and not allowed command line switch combinations are overed.
By using the commands in this tutorial, and/or expanding upon them, the user can resolve a large number of network difficulties.
Document version: Revision A