Highest Voted 'wireshark' Questions - Server Fault Stack Exchange

0

votes

1 answer

Need help getting StateServer to work, trying to decipher WireShark to figure out why

I'm using WireShark to try to figure out why I can't get my ASP.NET application (which is deployed to IIS6) to use a remote ASP.NET StateServer. For the record, StateServer works if my application is deployed to the same machine as the…

asked Jul 22 '10 at 10:19

DaveDev

111
3

0

votes

2 answers

Identifying VoIP Users

I'm looking for a way to identify as many consumer VoIP users on my ISP network as possible using packet analysis. My setup is like this: On my core switch, all traffic going in and out of gigabit1 is SPAN'd to gigabit2, where I have a linux server…

voip wireshark packet-analyzer pcap tshark

asked Jul 09 '10 at 20:26

Cory J

1,568
5
19
28

0

votes

2 answers

Track IP Messenger's chatting by wireshark

We have Linux server ( RHEL 5 ), and some client machines ( Windows XP ) in local area network. We using server as proxy server. I am using squid proxy. My windows machines using internet by proxy. Now my client machines using IP messenger for…

linux wireshark packet-sniffer packet-capture

asked Apr 13 '10 at 09:50

Kumar

823
3
20
43

0

votes

0 answers

Small read size by Windows SMB client

I am setting up a Linux server for high resolution online video editing. When I access the SMB share from a Windows 11 client, Wireshark analysis shows that the SMB Read requests are always a maximum of 256K in size. For efficiency I would like the…

windows samba server-message-block wireshark

asked Aug 20 '23 at 19:06

swami

155
4

0

votes

1 answer

Why can't wireshark see local interfaces?

I'm experiencing some strange network errors on my local machine (MS-Windows 10 Enterprise 22H2). These also manifest in a WSL container running on the machine (but not on any other device on the same network). The only known active components…

windows wireshark

asked Aug 17 '23 at 11:42

symcbean

21,009
1
31
52

0

votes

0 answers

Promiscuous Mode on VMware capturing only broadcast

I'm facing an issue with using promiscuous mode on VMware. I have 3 VMs connected to a single portgroup on which promiscuous mode has been enabled. It's changed to "Accept". I am monitoring traffic between the first 2 VMs on the 3rd VM. All 3 VMs…

networking vmware-esxi wireshark network-traffic promiscuous

asked Aug 08 '23 at 16:32

stealthmode

162
2
15

0

votes

1 answer

Proxmox host cannot reach guest: TCP client retransmitting instead of sending ACK after SYN/ACK

Setup: server (HTTP server on 80) on 192.168.1.20, clients on 192.168.1.17, 192.168.1.18 Client 192.168.1.17 can connect to the server fine (Wireshark capture on the client side attached) 1 0.000000 192.168.1.17 192.168.1.20 TCP 78 62275…

linux tcp wireshark proxmox

asked Jun 07 '23 at 05:25

Zixian Cai

101
3

0

votes

2 answers

What is Option 60 (Vendor Class Identifier) used for in DHCPv4?

Currently I'm using Wireshark to analyze the DHCP process between wireless devices and my DHCP server (which in this case, is my Wi-Fi router). On all of the devices that I tested, I noticed that each device provides a 'Vendor Class Identifier' (or…

networking dhcp wifi dhcp-server wireshark

asked May 02 '23 at 23:34

fancyshark

5
3

0

votes

0 answers

Failing to decrypt kerberos AP_REP with wireshark

I'm trying to decrypt kerberos traffic with wireshark for the learning purposes. My process of following: First I retrive keytab for the test user with kadmin kadmin.local: ktadd -k vdzh-fin.keytab vdzharkov@VDZHARKOV.NOVALOCAL Entry for…

kerberos wireshark tshark

asked Apr 06 '23 at 13:39

vudex

1
1

0

votes

0 answers

How do I convert raw data to text in data field in LPD protocol from wireshark?

I have captured the data sent to a receipt printer (https://starmicronics.com/support/products/tsp100iii-support-page/) using Wireshark. It seems that the printer uses LPD protocol. How do I convert the raw data to human readable format?

wireshark

asked Mar 31 '23 at 03:26

null

101

0

votes

0 answers

Not able to decrypt traffic with tshark and curl

Run tshark in background tshark -i any -w file_name.pcap -f "(port 443 or port 10002)" on server machine Run curl command on client machine after setting export SSLKEYLOGFILE=ssl_key_file_log.txt curl exits, tshark process is terminated Read…

wireshark tshark

asked Mar 22 '23 at 02:33

Sameer Naik

218
2
8

0

votes

0 answers

Periodic Disconnection with DHCP DISCOVER

LAYOUT 192.168.0.103(THE ONE LOSES THE CONNECTION - WIRESHARK CAPTURE) 192.168.0.84(THE ONE WORKS PROPERLY - WIRESHARK CAPTURE) We have an app that receives data from one of our devices. We installed our receiver app to both…

dhcp wireshark tcpip

asked Jan 30 '23 at 19:09

Batuhan Zorlu

3
2

0

votes

1 answer

Continuous [ACK]Packets Without any Response From Receiver

Our application sends some data to one of our devices via TCP/IP, However communication in between not working as it should be.Because TCP/IP is bidirectional, so if one side sends data to other, other sends ACK flag. CAPTURE As it seen in the…

networking wireshark tcpip

asked Jan 24 '23 at 18:36

Batuhan Zorlu

3
2

0

votes

1 answer

Apache server on Macos Monterey not accepting external public IP connections... why?

I am using MacOS Monterey 12.4 and have configured an Apache 2.4 server with virtual hosts that listen to all interfaces (0.0.0.0:80) on my host. I have tested my private ip (192.168.1.2), external-facing ip, as well as localhost on chrome and my…

apache-2.4 mac-osx nat port-forwarding wireshark

asked Jan 06 '23 at 22:12

theptr104

1

0

votes

1 answer

How to track down IPv6 DNS server configuration with Wireshark?

What Wireshark filter should I use to track down IPv6 DNS server advertisements on the network? I don't see any DHCPv6 traffic on my network, so I assume that the config of clients is happening through Router Advertisements. However, when I use the…

domain-name-system ipv6 wireshark

asked Dec 18 '22 at 13:17

dunxd

9,632
22
81
118

Questions tagged [wireshark]