![]() ![]() I answered question 5 correctly so I think I'm on the right track and I've done all the other Wireshark labs with similar filters and haven't had any problems with percentages. I've tried other variations too, total packets 10594 and displayed is 86 so i've tried. I used the filter (http.request or = 1 or tcp.flags eq 0x0002) and !(tcp.port eq 25)Ĩ% is displayed in the bottom right but it won't accept my answer. Here is the Wireshark top 17 display filters list, which I have used mostly by analyzing network traffic. What percentage of results are then displayed in the capture? Now take the filter used in the previous question, and add an OR expression which filters by (.tcp flags equal to 0x0002) and a further expression which filters by packets NOT from (tcp port 25). I've tried other variations too, total packets 10594 and displayed is 37 so i've tried. I used the filter (http.request or = 1) stated in the question itself and 3% is displayed in the bottom right but it won't accept my answer. If, for example, you wanted to see all HTTP traffic related to a site at xxjsj you could use the following filter: tcp.port 80 and ip.addr 65.208.228.223. If you want to filter for all HTTP traffic exchanged with a specific you can use the and operator. From the PCAP provided, apply a filter to display all web traffic (http.request or = 1). Filtering HTTP Traffic to and from Specific IP Address in Wireshark. ![]() I cannot get the answer to questions 3 or 5 and I don't know what I'm doing wrong.ģ. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |