Hi Ari,
I knew a bit about TCP/IP but did not know the best way last year to do
packet tracing with Wireshark for my work.
So I bought a copy of Chris Sanders' very readable book "Practical Packet
Analysis: Using Wireshark to solve Real-world Network Problems."
- It does what it says on the tin.
It talks about where to put hubs or port spoofing in order to get the
packets you want to see, and why you might not be able to see them, and how
to use the filter functions and conversation functions in Wireshark to find
the packets you want.
I highly recommend it as a very useful book.
- It is mentioned on the Wireshark book page (see
http://www.wireshark.org/bibliography.html ) just below Laura Chappell's
book.
I hope that this is useful.
Kind Regards,
Tony
-------------------- original post------------------------
Message: 1
Date: Thu, 15 Jul 2010 15:47:01 -0400
From: Ari Winokur <ariwinokur@xxxxxxxxx>
Subject: [Wireshark-users] Wireshark beginner
To: wireshark-users@xxxxxxxxxxxxx
Message-ID:
<AANLkTikWGkRsoYlb4QUeChS1f1uhSLbELGh3u5jburis@xxxxxxxxxxxxxx>
Content-Type: text/plain; charset="iso-8859-1"
I have looked at Wireshark, but don't know much about packet capture or
sniffing a network. I would like to break more into this area. Can
anyone recommend a good resource in this area? I have looked at Laura
Chappell's book but I am not certain if a beginner to this field will be
able to follow the book. Any opinions on that?
Thanks,
Ari W.