Chapter 2. Using Capture Filters

In this chapter, we will cover the following topics:

Configuring capture filters
Configuring Ethernet filters
Configuring hosts and networks filters
Configuring TCP/UDP and port filters
Configuring compound filters
Configuring byte-offset and payload matching filters

Introduction

In the first chapter we talked about how to install Wireshark, how to configure it for basic operations, and where to locate it in the network. In this chapter and the next one we will talk about capture filters (Chapter 2, Using Capture Filters) and display filters (Chapter 3, Using Display Filters).

It is important to distinguish between these two types of filters:

Capture filters are configured before we start to capture data, so only data that ...

Get Network Analysis Using Wireshark Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Network Analysis Using Wireshark Cookbook by Yoram Orzach

Chapter 2. Using Capture Filters

Introduction

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly