Wireshark?

[Skylais]

Can someone explain to me what wireshark is and what it does and what everything in this image represents.

 

[TanyaC]

IMHO, Wireshark is one of the best network traffic analysis tools around. It can monitor and analyze packets from multiple networks, or just one network. If you suspect you have problems on your network then this is the program that can tell you.

An essential tool in all network administrators toolbox, IMHO.

As to what everything means, that is a BIG question, and the best place to go for answers is Wireshark · Go Deep.

It does have a fairly steep learning curve if you don't have a background it networking technologies.

Good Luck

 

[Shadowjk]

Can someone explain to me what wireshark is and what it does and what everything in this image represents.

The image shows all traffic generated by 192.168.0.2

I'm an advocate of Wireshark but be careful, it can be a malicious tool as well...

Josh

 

[diplo]

Wireshark uses dissectors to figure out what protocol a given frame is. When you look at the "rainbow" that is windows wireshark traffic you will see a myriad of protocols flying by that you had no idea existed, and you will learn quickly that windows machines are very lonely and want to make friends on a network. A great way to learn about all these protocols is just to go to wikipedia and research them. For example, on your screen, you could research pretty much any of those protocols shown (ARP, DNS, ICMP) and learn alot about what your computer is doing in the background.

 

[Skylais]

Thanks guys! In my cisco class we just covered a lot of these protocols actually.