Skip to content
Snippets Groups Projects
README.md 4.65 KiB

Wireshark Setup and Usage

Wireshark is the world’s foremost and widely-used network protocol analyzer. It lets you see what’s happening on your network at a microscopic level and is the de facto (and often de jure) standard across many commercial and non-profit enterprises, government agencies, and educational institutions. Wireshark development thrives thanks to the volunteer contributions of networking experts around the globe and is the continuation of a project started by Gerald Combs in 1998.

Wireshark is an excellent open-source tool with wide use. Capabilities include inspection of dis packets.

Capturing DIS Packets by Tobias Brennenstuhl is his thesis annex specifically written to help support student efforts.

Installation and Configuration

IMPORTANT: if you have already installed Wireshark, check your version!
Always use the latest so that operating-system security and feature sets are up to date.

  1. Download Wireshark from https://www.wireshark.org
  2. Install as local administrator if possible
  3. Launch and see if network packets are being detected.
Successful installation, monitoring Failed installation, no monitoring
  1. Check your network interfaces via console commands ipconfig
  2. Double-check network interfaces using ipconfig /all to see any hidden interfaces

Capturing Packets

  1. Adjust Wireshark Preferences as shown
File > Preferences > Appearance > Columns File > Preferences > Appearance > Layout
File > Preferences > Capture
  1. Set filter to (tcp.port == 3000 || udp.port == 3000) && dis
  2. Lauch one of the example programs to send packets, then observe results.
udp && dis (tcp.port == 3000 || udp.port == 3000) && dis

Troubleshooting

  1. Check your firewall settings. (Again thanks to Tobias for another helpful reference.)
  2. Compare Wireshark results with/without your Virtual Private Network (VPN) active.
  3. Compare Wireshark results when logged in as local administrator, if possible.
  4. StackOverflow is an excellent resource for detailed technical questions, looking up error messages, etc.

Videos

  1. [Intro to Wireshark Tutorial // Lesson 1 // Wireshark Setup](https://www.youtube.com/watch?v=OU-A2EmVrKQ&t=358
  2. Intro to Wireshark: Basics + Packet Analysis! by SinnohStarly - Ross Teixeira.
  3. Wireshark Tutorial for Beginners by Anson Alexander
  4. Back to Basics video by Hansang Bae. "Read.... READ I SAY!!!!"

References