Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
How to use Wireshark to c...

How to use Wireshark to capture packets? Highlighted

Latest reply: Feb 14, 2022 08:54:23 8926 77 15 0 6
View the author 1#

Hello there, Community friends!


This post explains the procedure of how to use Wireshark to capture packets. Please see more details below.


Wireshark

Source: https://news.updatestar.com/post/wireshark-3-released-with-new-npcap-windows-packet-capturing-driver


BACKGROUND


During our troubleshooting, we need to capture some packets to analyze the detailed problem. We usually use software such as Wireshark to do this task.


PROCEDURE


1. Open Wireshark, select the NIC, then start to capture, as shown below.


phase 1


2. Main interface when capturing packets:


phase 2


3. If we want the result to be more graphic, we can open the IO graphs. Follow the steps below:


phase 3


4. IO graphs display the visualized result by using time range as the X axis.


phase 4


This way to capture packets is not available on switches. If we need to capture packets on a switch, we need to configure port-mirroring, which we will introduce in the next post.

Like (15) Dislike (0) Favorite(6) Share Report
xiaomumu
xiaomumu Created Dec 20, 2018 03:22:38 (0) (0)
Wireless LAN interface can also capture?  
dengdengdeng
dengdengdeng Created Jan 18, 2019 15:17:59 (0) (0)
good  
Salnaguide.com
Salnaguide.com Created Jan 29, 2019 23:33:57 (0) (0)
Thanks for Sharing such best information https://www.salnaguide.com  
Previous: RSTP adopts fast convergence mechanism. So, there is no Forward Delay interval in RSTP.
Next: Default user record time after user offline
(0) (0)
2#
sim_157
Created Dec 8, 2018 04:16:01

thanks for sharing, How to use Wireshark to capture packets?-2817021-1
View more
  • x
  • convention:

dengdengdeng
dengdengdeng Created Jan 18, 2019 14:56:12 (0) (0)
good  
(0) (0)
3#
Jamalb
Created Dec 9, 2018 07:40:38

fine ...
View more
  • x
  • convention:
(0) (0)
4#
Bitaites
Created Dec 9, 2018 18:42:47

I´m interested in port mirroring capture!! Then please share.
View more
  • x
  • convention:
(2) (0)
5#
Mihnea
Created Dec 10, 2018 13:17:20

Posted by Bitaites at 2018-12-09 18:42 I´m interested in port mirroring capture!! Then please share.

Obtaining Packets from Switch Mirrored Environment


On the switch, the mirroring port and observing port are installed. Connect the laptop with the switch through the observing port. Start the Wireshark on the laptop to capture packets.


For details about setting the mirroring port and observing port, see the corresponding switch product documentation or ask Datacom personnel for help.


Relevant concepts and principles are as follows:



portmirror

 

1.       Mirroring port and observing port:


Mirroring port: Indicates the port that is being monitored. All the packets that pass through a mirroring port are copied to the observing port.


Observing port: Indicates the port that is connected to a monitoring device and used to send packets from the mirrored port to the monitoring device.


An observing port is dedicated to forwarding mirrored traffic. Do not configure other services on an observing port; otherwise, mirrored traffic and other service traffic interfere with each other.


If the mirroring function is deployed on many ports of a device, a great deal of internal forwarding bandwidth will be occupied, which affects the forwarding of other services. Additionally, if the mirrored port bandwidth is higher than the observing port bandwidth, for example, 1000 Mbit/s on a mirrored port and 100 Mbit/s on an observing port, the observing port will fail to forward all mirrored packets in a timely manner because of insufficient bandwidth, leading to packet loss.


2.       Mirroring Direction


The mirroring direction refers to the direction in which the device copies packets on the mirrored port to the observing port:


Inbound: The device mirrors the packets that are received by the mirrored port to the observing port.


Outbound: The device mirrors the packets that are sent from the mirrored port to the observing port.


Bidirectional: The device mirrors the packets that are received and sent by the mirrored port to the observing port.
View more

This article contains more resources

You need to log in to download or view. No account? Register

x
  • x
  • convention:

Hblack
Hblack Created Jul 2, 2019 01:20:41 (0) (0)
This is an excelent article!  
(0) (0)
6#
phpinterview1991
Created Dec 11, 2018 09:30:20

This post was last edited by phpinterview1991 at 2018-12-11 09:32. Thanks for posting useful information.You have provided an nice article, Thank you very much for this one. And i hope this will be useful for many people.. and i am waiting for your next post keep on updating these kinds of knowledgeable things...Really it was an awesome article...very interesting to read..please sharing like this information......

php interview questions , php interview questions and answers, php interview questions and answers for freshers
View more
  • x
  • convention:
(0) (0)
7#
EdeninRealMadrid
Created Dec 11, 2018 18:01:59

Nice idea
View more
  • x
  • convention:
(0) (0)
8#
jomos
Created Dec 11, 2018 18:06:59

Good
View more
  • x
  • convention:
(0) (0)
9#
EdeninRealMadrid
Created Dec 12, 2018 12:47:58

Need more information
View more
  • x
  • convention:
(0) (0)
10#
jomos
Created Dec 12, 2018 12:51:33

Good
View more
  • x
  • convention:
12345678
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.