Highest Voted 'wireshark' Questions - Server Fault Stack Exchange

1

vote

0 answers

'socat' not displaying incoming UDP packets, but Wireshark does

The link is an image of a Wireshark dump of an incoming 60-byte Ethernet frame which contains a UDP packet. The packet payload is the single word 'hello' (sorry, I don't have enough rep to paste the image directly). Problem: I can't get socat or nc…

asked Jun 17 '21 at 10:54

QF0

183
1
7

1

vote

1 answer

VoIP one-way audio, only when call initiated from one side

I am setting up some new switches and VLANs and I am getting trouble with our pre-existing Asterisk VoIP set-up. Most calls work ok. Some get just one-way audio. I tried to narrow it down to this specific test situation: Asterisk server is…

iptables routing asterisk wireshark sip

asked May 07 '21 at 14:10

pgr

459
5
16

1

vote

1 answer

Why is my PC doing more than one DNS query for www.ietf.org?

I'm doing an exercise for a class where I have to flush the DNS cache and then visit www.ietf.org and capture the packets. I got this: The selected query and response are the "main" ones. What about the others? Looks like a redirect. My guess is…

domain-name-system wireshark cloudflare

asked Apr 06 '21 at 20:20

Segmentation fault

113
4

1

vote

0 answers

TLS 1.2 Failure

I am using Webinspect to scan sites. When going through Webinspect, I get "the client and server cannot communicate because they do not possess a common algorithm". From the same system, when using Firefox, Chrome, or Edge, I am able to connect. The…

ssl wireshark

asked Mar 31 '21 at 13:53

Katt8m19

11
2

1

vote

2 answers

How to decrypt TLS traffic with Wireshark using RSA asynchronous encryption?

I want to be able to capture and decrypt TLS traffic that one off my internal application (that I don't have access) makes to the internet. (For testing I am using Postman to create a request to a secure server.) What I did was to add an Nginx as a…

ssl ssl-certificate wireshark packet-sniffer

asked Sep 02 '20 at 11:30

mavi

121
1
1
7

1

vote

0 answers

Sniffing packets over a wifi network, with or without monitor mode using wireshark

So, I am actually confused, there are some guides that say you can't just capture traffic on wireless LAN with promiscuous mode and you need to setup monitor mode, also enter the wifi password to be able to decrypt the data. But then there are some…

wireshark sniffing

asked Aug 07 '20 at 19:18

Hormoz

111
1

1

vote

0 answers

TCP Window Size

Hoping someone can clarify a query I have in relation to TCP window size and whether it could be contributing to my slow throughput achieved via iPerf. I took a Wireshark capture from a client while doing a standard iPerf test from the client (win…

tcp wireshark

asked Aug 03 '20 at 06:04

loneknight

11
2

1

vote

0 answers

Debugging port forwarding in Docker

Manager I have a docker swarm setup on a mesh VPN. My manager is on 10.0.0.1. I have run: docker swarm init --advertise-addr=wg0 which then uses the VPN IP to listen on 10.0.0.1 opposed to the default public IP. Worker On my worker 10.0.0.2 I can…

docker wireshark docker-swarm

asked Jun 18 '20 at 10:34

maxisme

159
1
10

1

vote

2 answers

Record SSH commands sent to a Mac from Windows

I've got a bit of a puzzler - I am an administrator on both a Windows 10 and a Mac Catalina machine. The Windows machine is currently running software that has a known bug - SSH commands are sent to a Mac by a large piece of .NET Software that is…

windows mac-osx process wireshark strace

asked Mar 28 '20 at 21:24

Coruscate5

53
9

0

votes

1 answer

Treat TCP as MQTT protocol

I have packets captured during not encrypted MQTT communication: Protocol is detected as TCP. How to ask Wireshark to analyze packets as MQTT? UPD In case I set MQTT server work on default 1883 port I Wireshark treats packets like MQTT. But how to…

wireshark mqtt

asked Jan 20 '20 at 13:44

vico

99
1
2

0

votes

2 answers

Is it possible to sniff packets of other users on connected over LAN in a workspace or college lab?

I am asking this (for educational purposes) to be alert if this kind of thing happens to me.

wireshark sniffing

asked Jan 14 '20 at 07:49

Saurav

101

0

votes

1 answer

Troubleshooting Network Switching Connectivity

I am managing a network that sporadically has network outages that present as follows no TCP or ICMP traffic is working between any devices on the network. Two computers with valid ip addresses are unable to ping each other UDP, ARP, SSDP, and…

routing switch wireshark

asked Jan 09 '20 at 23:38

Jeff

146
1
3
12

0

votes

1 answer

Retrieve data from wireshark (PCAPNG)

I have a PCAPNG file and I need to retrieve two files from it, one is a TXT and the other one is a PNG. The provided file does not have FTP-DATA, it only have ARP, DHCP, DNS, FTP, HTTP, IGMPv3, OCSP, SSDP, TCP, TLSv1.2, TLSv1.3 and UDP packets. This…

ftp wireshark pcap

asked Nov 20 '19 at 18:05

Mateo Gutierrez

13
2

0

votes

1 answer

NBNS Query = ICMP Destination Unreachable

I am having some difficulties when I am trying to get the NetBIOS Name of a machine by it's IP Address with the command (On Windows) nbtstat -A 192.168.1.1, In this example I am trying to get the name of the Router. My problem is that it doesn't…

networking wireshark icmp

asked Oct 29 '19 at 21:41

Dan

1

0

votes

1 answer

Wireless Packet captures - VMware

Software: Wireshark Is it possible to analyse Wireless Packet captures on VMWare using Linux Ubuntu OS? I ask this as I’m using Windows for my computer but I’m struggling to get all the information I need so I’ve had to resort to a virtual…

networking wifi wireshark

asked Oct 14 '19 at 10:35

C.Mann

3
2

Questions tagged [wireshark]