All Questions
Tagged with wireshark networking
360
questions
0
votes
0
answers
27
views
Server sometimes not sending ACK in response to PSH, ACK
We've implemented a TCP server socket in C++ on a linux machine which is connected to another device, streaming data small packets at high rate (800 Hz). To do so without too much latency (which we ...
2
votes
1
answer
768
views
How to explain sequences of FIN,ACK instead of FIN - FIN,ACK?
Context: newly installed Debian 12, I get a bunch of strange logs related to ssh:
root@square:~# journalctl -u ssh -f
May 07 11:13:00 yop-square sshd[766]: error: kex_exchange_identification: ...
1
vote
0
answers
27
views
802.11 frames gets resent by my linux
My program is sending custom 802.11 frames for WPA handshake, like authentication, association or acknowledgement. Yet the operating resend the same packet with modifying its radiotapheader and ...
0
votes
1
answer
53
views
How to capture packets with different snaplen for different packets
I'm trying to capture packets to diagnose a network application. There are a small number of packets that I want to capture the entire contents for application level protocol analysis, but a large ...
2
votes
1
answer
177
views
Does total network traffic being higher than the bit rate of a device's ethernet controller affect the controller?
I am using a Wago 750 ethernet controller on a local network that is at its peak hitting ~38,000,000 bits / second as per Wireshark. The Wago is becoming semi-unresponsive around the time of this ...
0
votes
1
answer
273
views
Understanding packet routing when using Wireguard/Tailscale and the BitTorrent Protocol
I have a local machine on a VPN network with private IP A , and a VPS with private IP B which acts as an exit node, i.e. all traffic in the local machine is supposedly being routed from the local ...
1
vote
1
answer
126
views
Why am I able to send UDP packet larger than my WIFI interface's MTU?
I have written a simple python program to send a UDP datagram.
import socket
client_socket = socket.socket(socket.AF_INET,socket.SOCK_DGRAM)
host_name = socket.gethostname()
host_ip = '1.2.3.4'
print(...
0
votes
1
answer
69
views
From a computer connected in Wifi, can I see the traffic of ethernet-connected computers, with Wireshark?
In the following network, if I open Wireshark on ComputerA, can I see the traffic of ComputerB (to internet) with Wireshark?
____________________
| Home router |
| (provided by ISP) |
| 192....
1
vote
1
answer
807
views
Trying to understand how WSL2 networking and routing works when pinging google.com, confused
I'm trying to learn networking and i'm still a novice. I'm confused about how the routing is done between the virtual adapter and my wifi card
When I ping google.com from WSL, I can see on Wireshark ...
0
votes
0
answers
297
views
How to capture packets at the Ethernet layer on a SOCKS5 proxy server?
When I capture packets with tcpdump on an Ubuntu 20.04 VM running a SOCKS proxy server on port 1080, they are often larger than 1500 bytes. My network device has an MTU of 1500, so as far as I ...
1
vote
0
answers
86
views
kali linux filter by protocol wireshark's pcaps
I spent the last 2h looking for a way to quikly filter pcaps, it seems that it is possible using cmd/bat on windows but I can't find anything for kali linux.
I have a way too big pcap and I want to ...
0
votes
0
answers
68
views
Wireshark showing packet exchanges with unconnected IPs
Running Wireshark on a PC for network monitoring and I noticed something strange. Application data is being exchanged with websites that are not open in the browser, or on any other device on the ...
0
votes
0
answers
19
views
Implementing Video streaming restrictions based on hourly usage at home
I'm new at networking, so my question might be basic or naive.
I want to implement restrictions for mobile devices if it is being used to view videos for more than an hour continuously then its ...
0
votes
0
answers
190
views
Wpa PTK and GTK in detail
I have been checking Pairwise and Group Transient keys in a network for security. I understand
PTK is derived from = PMK, AP nonce (ANonce), STA nonce (SNonce), AP MAC address, and STA MAC address
...
0
votes
1
answer
286
views
Configure Virtualbox to capture network traffic between 2 VMs on the same host from another physical machine
My context is:
A physical machine with windows 10 (PC_Physcial_01) that host 2
virtualbox linux VMs PC_VM_01 & PC_VM_02)
An other physical machine dedicated to sniff network traffic
(...