All Questions
16
questions
1
vote
1
answer
210
views
PostgreSQL traffic analysis - Wireshark - how many bytes in total are being received by the client?
<TL;DR>
How many bytes are being received in total when a SELECT * command is issued for a (small) table?
</TL;DR>
I have a PostgreSQL table - very simple (see fiddle here):
CREATE TABLE ...
- 111
8
votes
2
answers
5k
views
How many TCP retransmissions Internet traffic is considered normal for a basic home setup?
Out of curiosity, I connected my laptop with an ethernet cable to the router and fired up Wireshark to understand and 'visualize' what's going on.
Some packets caught my attention.
I was having some ...
- 81
0
votes
0
answers
651
views
How do I stop TCP reset packets?
Full story: This has been quite the odyssee, finding out who is sending these TCP reset packets. The isp pointed me in the direction of the minecraft server, the minecraft server said it has to be the ...
- 101
0
votes
1
answer
2k
views
tcp session - http request [ x out of y] in wireshark capture
As below, i am seeing this [HTTP request 1/2] and [HTTP request 2/2] in 2 separate payload, are they separate GET request in a single tcp session or are they the same GET request ???
====
Added full ...
- 1,625
-1
votes
2
answers
783
views
Why does a USB Adapter set to monitor mode on Linux not capture non-WiFi traffic send on the same frequency (2.4GHz) as WiFi ?
I have a WiFi Adapter from Alfa that can function in Monitor mode on Linux. Once I set it up and run Wireshark, I am able to see traffic across other routers and devices. If there is a new protocol ...
0
votes
3
answers
3k
views
Relation between TCP conversations and TCP streams in Wireshark
I have read about Conversations and TCP Streams but I'm still a bit unsure how they relate to each other if they are on the same layer.
For different layers, it's clear to me that e.g. an IP ...
- 6,085
1
vote
0
answers
132
views
TCP packet issue with 802.11ac but not with 802.11n on an Android Nexus 6
I have an Android Nexus 6 that connects to my computer via an ad-hoc network.
When my phone connects to the 802.11n card (TP-LINK 300Mbps Wireless N), the bytes are sent with no issue; verified with ...
- 11
0
votes
2
answers
1k
views
tcp retransmission on lan, wifi is fine
I have a Dell XPS 17 laptop (about 5 years old) running Windows 7 and a Synology RS412 NAS. I also have various other networked devices (servers, routers, laptops, pcs). Some are in my domain, some ...
3
votes
1
answer
5k
views
Change TCP sequence numbers for packet replay?
First off, I'm using wireshark for capture and colasoft for replay. I'm attempting to replay a group of captured packets back, looped to be done several times over (the purpose of this is just to send ...
- 31
2
votes
2
answers
9k
views
Capture TCP communication on a specific port using wireshark
I have build a simple TCP server which listens on port 9999, and it has IP address 202.168.66.1. I have a TCP client which has the same IP address and connects to the server on the said port.
Now ...
- 121
1
vote
1
answer
925
views
IP checksum offload
I recently updated to Windows 8 and get alot of invalid packet transfers. It says "Ip checksum offload?" (Wireshark) and most of my packets get lost. The checksum is 0x00. I also updated my NIC ...
- 11
1
vote
1
answer
2k
views
Replace sensitive IP addresses in Wireshark with XXX.XXX.XXX.XXX
What would be an easy way to replace a sensitive IP address in a Wireshark packet capture with XXX.XXX.XXX.XXX? When I export the pcap in txt or csv I can no longer import it into Wireshark.
- 419
7
votes
2
answers
30k
views
TCP segment of a reassembled PDU
In wireshark sometimes I see this:
478195 5738.896809 192.168.1.79 61.213.44.124 TCP [TCP segment of a reassembled PDU]
What is a PDU? Was it reassembled? What does this mean?
- 14.5k
3
votes
2
answers
6k
views
What does this UDP Packet mean?
I'm total newbie at tcp/ip and I was experimenting with Wireshark.
What this mean:
1824 578.194204 xxx.xxx.xxx.xxx yyy.yyy.yyy.yyy UDP Source port: 17500 Destination port: 17500
In data I can ...
asksuperuser
1
vote
2
answers
6k
views
Is it possible to know which process opened a connection in Windows?
With netstat -a I can see all connections from my machine to the MySQL Server.
There is any way too see which process or executable is responsible for each connection?
The only solution I found so ...
- 16.1k