Chapter 5. Advanced Wireshark Features

Once you master the basics of Wireshark, the next step is to delve into its analysis and graphing capabilities. In this chapter, we’ll look at some of these powerful features, including the Endpoints and Conversations windows, the finer points of name resolution, protocol dissection, stream following, IO graphing, and more.

Network Endpoints and Conversations

In order for network communication to take place, you must have data flowing between at least two devices. An endpoint is a device that sends or receives data on the network. For instance, there are two endpoints in TCP/IP communication: the IP addresses ...

Get Practical Packet Analysis, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Practical Packet Analysis, 2nd Edition by

Chapter 5. Advanced Wireshark Features

Network Endpoints and Conversations

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly