![]() TCP buffer full - Source is instructing Destination to stop sending data tcp.window_size = 0 & != 1ġ3.Filter on Windows - Filter out noise, while watching Windows Client - DC exchanges smb || nbns || dcerpc || nbss || dns Show only traffic in the LAN (.x), between workstations and servers - no Internet: ip.src =192.168.0.0/16 and ip.dst =192.168.0.0/16ġ2. Show only SMTP (port 25) and ICMP traffic: tcp.port eq 25 or icmpġ1. Display http response code of 200 in network traffic = 200ġ0. Show traffic which contains google tcp contains googleħ. ![]() display all protocols other than arp, icmp and dns !(arp or icmp or dns)Ħ. Display traffic with source or destination port as 443 tcp.port = 443ĥ. Display tcp and dns packets both tcp or dnsģ. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |