Linux Today: Linux News On Internet Time.

Wireshark II: The Analysis

Nov 09, 2010, 20:34 (0 Talkback[s])
(Other stories by Ken Hess)

"Last week, you had the opportunity to look at Wireshark and its ability to easily capture network packets. This week, you'll take a deeper dive into those Wireshark-infested streams and explore analytical techniques and shortcuts that you can sink your teeth into. Don't worry, you won't need a bigger boat to use any of these features.

"Wireshark, by itself, is an effective analytical tool and it can point you in the right direction for some trouble spots. For example, if someone on your network has an email virus, you can see those packets, their source and their destination. Unfortunately, you'll see them mixed in with all of the other packets that you've captured. The solution is selective filtering."

Complete Story

Related Stories: