Questions tagged [wireshark]
The network protocol analyzer developed and maintained by the Wireshark Foundation
327
questions with no upvoted or accepted answers
5
votes
0
answers
394
views
Windows 7 stops sending DNS packets at seemingly random times
Pinging an IP directly (and just about any other direct IP connection) seems to pass through.
On the other hand, when pinging a domain, using chrome to enter a website or attempting to use nslookup ...
4
votes
0
answers
7k
views
Capturing Traffic from Specific Application (EXE) Only
Is it possible to filter a specific application (.exe) in Wireshark and listen only to the traffic of that running process? If yes, how or what's the filter syntax?
I can't seem to find any search ...
4
votes
1
answer
2k
views
why am I not seeing traffic using TCPDUMP while sniffing on wireless interface with the station in WDS mode
I've 2 wireless interfaces one has the type of AP and the other has the type monitor.
the AP is attached to a bridge br-lan.
When I run for example:
tcpdump port 5201 -s 0 -ni wlan0
TCPdump is not ...
3
votes
0
answers
167
views
What does Wireshark do to my Windows settings that improves the Wifi performance?
I'm here because we have very slow Wifi performance with brand new Dell laptops (XPS 13 9360). For troubleshooting purposes I have downloaded and installed Wireshark (64bits, with Winpcap).
I did ...
3
votes
0
answers
1k
views
Packet injection in a Wi-Fi network with card in monitor mode
I have a computer connected to a WEP-protected Wi-Fi network. With scapy I can forge packets (let's say ICMP) and send them to another station of the same network.
If I put my wireless card in ...
3
votes
0
answers
2k
views
Capture network traffic between VM's Virtualbox using Wireshark
I'm trying to capture all network traffic between VMs (and in the VMs to themselves) running on a single host using Virtualbox for the VMs and Wireshark for the capturing. VMs are Ubuntu 14.04 and the ...
3
votes
1
answer
6k
views
SYN-ACK not received
On a standard TCP connection between server and client, I have this issue: the SYN-ACK is not received from the client, while it is sent from the server. I could see this on Wireshark from both server ...
3
votes
0
answers
810
views
What happens when Capturing USB Packets using Wireshark
I am trying to capture the packets sent by a Mouse to a host PC using Wireshark.
Operating System - Ubuntu 12.04
Wireshark - 1.8.2
Problem 1.) Before I plug in the USB Mouse, when I start the ...
3
votes
1
answer
2k
views
How to properly use stunnel?
I'm trying to setup Wireshark ssl debugging, and to do this, I'm trying to follow instructions in this article.
I'm currently at stunnel part, and I'm trying to execute
sudo stunnel -p ps.pem -d ...
2
votes
1
answer
334
views
How Wireshark is able to pick network traffic from within Windows10 coming from WSL2
My task is to create 2x programs written in C/C++ which can communicate with each other from within WSL2 and Windows 10. I'm able to send traffic from WSL2 to Windows 10, however
I cannot manage to ...
2
votes
2
answers
317
views
extract the top 5 TCP or UDP flows from tshark sorted in descending by Total bytes
As the question heading states, given a packet capture I want to extract the top 5 flows for TCP (or UDP) sorted based on total bytes in the descending order.
I have come up with this so far
tshark -r ...
2
votes
0
answers
241
views
WSL2 cannot connect to the Internet when Sangfor aTrust is running
I am using WSL2 on Windows 11 22H2 22624.1470. Ubuntu 22.04.6 LTS installed on WSL2. When I run a program called aTrust, which is developed by a corporation called Sangfor, my WSL2 cannot connect to ...
2
votes
0
answers
59
views
Realtime filtering of a capture in a different process
Posted this on network engineering earlier: https://networkengineering.stackexchange.com/questions/67433/realtime-filtering-of-a-recording-in-a-different-process
I have a network recording setup ...
2
votes
0
answers
2k
views
Troubleshooting VPN connection with Wireshark by decrypting IPSec packets
I'm having troubling establishing a VPN connection to a specific network and I'm not the only one having issues. As per their instructions, I'm using the standard VPN client built in windows with pre-...
2
votes
0
answers
358
views
Wireshark does not list USB HID mouse or keyboard
I have installed Wireshark 3.05 and USBPcap 1.2.0.4 on a Windows 10 machine (Version 10.0.18362.418) to sniff some USB communication from devices. Wireshark shows me three USBPcap interfaces after ...