WShark Video
In this assignment, we were to watch the Introduction to WireShark video. Wireshark is the world's foremost network protocol analyzer that allows you to capture, save and analyze your network's packet traffic. In the video, we were provided an overview of Wireshark and a hands on packet capture demonstration by Gerald Combs and how Wireshark can be used for network troubleshooting. Below are the assignment questions that we had to answer.
- Who is Gerald Combs?
Gerald Combs is the developer of Wireshark. - What does a protocol analyzer like Wireshark do?
Wireshark allows you to capture, save and analyze your networks packet traffic and can be used for network troubleshooting. - In the Wireshark interface, what is the Packet List?
The packet list lists all the packets that were captured on the network. - In the Wireshark interface, what is the Packet Detail?
The packet detail is where the specific details of the packets that were captured are displayed. - What privileges do you need to run Wireshark? Why?
You need to be a root user to have root privileges to capture traffic. - What is a Wireshark display filter?
A Wireshark display filter allows only the packets specified by the user to be displayed. - If you right click on a packet, what are you presented with?
A menu list that lets you perform actions to the packet. - Describe the display filter employed when you right click and select "Follow TCP Stream?"
It gives you a window that shows you only the packets of all captured that follow a TCP stream. - Where can you go to find more information about packet capture for Wireshark?
The Wireshark website below can give more information on packet capture. http://www.wireshark.org/docs and Google.
Above: Example of the packet lists that was captured on the network using Wireshark.
