Welcome to Scribd. Sign in or start your free trial to enjoy unlimited e-books, audiobooks & documents.Find out more
Download
Standard view
Full view
of .
Look up keyword
Like this
1Activity
0 of .
Results for:
No results containing your search query
P. 1
Wireshak Tutorial

Wireshak Tutorial

Ratings: (0)|Views: 18|Likes:
Published by hafiz0007
wireshak
wireshak

More info:

Published by: hafiz0007 on May 25, 2011
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See more
See less

05/25/2011

pdf

text

original

 
Handout Computer Networks Lab: Network Monitoring
1
What is Wireshark?
Wireshark is a network packet analyzer. A network packet analyzer will try to capture networkpackets and tries to display that packet data as detailed as possible.You could think of a network packet analyzer as a measuring device used to examine what's goingon inside a network cable, just like a voltmeter is used by an electrician to examine what's going oninside an electric cable (but at a higher level, of course).
Functionality
Understanding the general idea of how Wireshark works will help you understand how other analyzerswork, as well.Figure 1
NetworkWinPcap – AirPcap - LibPcapCapture FiltersCaptureEngineCore Engine
Dissectors – Plugins – Display Filters
GTK
 
Handout Computer Networks Lab: Network Monitoring
2
 
Features
 
The following are some of the many features Wireshark provides:
Capture
live packet data from a network interface.• Display packets with
very detailed protocol information
.
Open and Save
packet data captured.
Import and Export
packet data from and to a lot of other capture programs.
Filter packets
on many criteria.
Search
for packets on many criteria.
Colorize
packet display based on filters.• Create various
statistics
.Here is what the interface looks like:Figure 2
Capturing Packets
To begin capturing and select our capture interface there are two places we can go in Wireshark:1. Going to the Menu bar > Capture2. Or we can use the first three buttons on the left hand side in the toolbar
Filter Toolbar‘Packet List’Pane‘Packet Details’ PaneAliedDislaFilter(s)‘Packet BytesPane
 
Handout Computer Networks Lab: Network Monitoring
3
 
Figure 3Let’s look now at the capture options. Go to Capture > Options… or click on the second icon from left toright in the toolbar.Figure 4In the capture field we can define the
Interface
on which we want to capture traffic, the
Buffer size
of thecaptured data and we can define some
Capture Filters
.We can also capture traffic directly to a single or multiple files or we can tell Wireshark, in the StopCapture field, to stop the capturing process after certain limit is reached.

You're Reading a Free Preview

Download
scribd
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->