Difference between revisions of "Recording a packet log"

Revision as of 13:50, 10 March 2010

This page contains instructions on how to create a network packet log to help troubleshooting network problems.

Step 1: Download, install and open Wireshark

Wireshark is a free and open-source packet analyzer. You can download it from its website, www.wireshark.org. After downloading, install it (together with WinPcap, which is included), and then open it from the Start menu.

Step 2: Select the interface

Click on the "Interface List" button ( ). This will open the list of available network interfaces. Click the Options button in the row corresponding to the network interface for your Internet connection. Some computers only have one network interface; others have several. For example, laptops can have wireless and LAN network interfaces. If unsure, select the interface with most packets.

Step 3: Configure capture options

An example of correct capture options

Set the following capture options:

• Uncheck Capture packets in promiscuous mode if checked
• In the field by the Capture Filter: button, enter: host wormnet1.team17.com or port 17011

Step 4: Start the capture

Click the Start button to begin capturing packets.

Step 5: Reproduce the problem

Start W:A and try to reproduce the network problem that you are experiencing. Leave Wireshark open while it records the relevant network traffic.

Step 6: Stop and save the capture

After reproducing the problem (and recording the corresponding traffic), click the Stop capture ( ) button, then save the capture to disk.