Author Profile - Tony Fortunato is a Senior Network Specialist with experience in design, implementation, and troubleshooting of LAN/WAN/Wireless networks, desktops and servers since 1989. His background in financial networks includes design and implementation of trading floor networks. Tony has taught at local high schools, Colleges/Universities, Networld/Interop and many onsite private classroom settings to thousands of analysts. Tony is an authorized and certified Fluke Networks and Wireshark Instructor. His Pine Mountain Group CNA Level I and II certification demonstrates his vendor neutral approach to network design, support and implementations. Tony has architected, installed and supported various types of Residential Wireless High Speed as well as hundreds of WIFI hotspots. Tony uses a variety of technologies from Powerline, Wireless and wired technologies to find the most cost-efficient and reliable solution for his customers. Tony combines custom programs, open source and commercial software to ensure a simple support infrastructure.
Wireshark - Getting Started Tips
I was presenting and was surprised that some of the tips that I think are pretty basic are still met with awe and excitement. So I thought what a good idea to post. I have included some screen shots from my Wireshark class notes.
I usually either have to install Wireshark regularly on my lab PC's, or have someone install Wireshark on their PC, so knowing how to do this from the command line is a real time saver.
Many times I make a Wireshark shortcut on my desktop to automatically start capturing when I double click it.
Just a quick note;
- you can get your interface info by typing tshark -D in the Wireshark program directory
- you can also use the numeric or index refernce number instead of the GUID
Many time I have to merge specific files and this tip saves me a bunch of time
Here's a list of shortcuts I reference.