I am noticing that i am seeing a lot of people who are self taught when it comes to Wireshark and protocol analysis as well as those who want to get into it.
I decided to create a 2 hour Udemy (Wireshark Fundamentals) course to teach people Wireshark basics and in the last lecture Idemonstrate how to get started with protocol analysis.
The key is to demonstrate why and when to use a feature. Knowing where the features are doesn't imply you know when and why to use them.
I encourage anyone interested in protocol analysis to get familiar with cause and effect. That is where you simply do something and review those packets.
Last month had a draw for free coupons to take my class and thought it would be cool to post an entire lecture from the course. Enjoy.