Capture network traffic for troubleshooting
- Former user (Deleted)
Owned by Former user (Deleted)
Information
Some issues may require a network/Wireshark capture to identify how network traffic is routing. To gather this information, Support Systems uses the free 3rd party application Wireshark
Steps
Note: These are the basic steps to begin an unfiltered network capture. Additional instructions may be provided by Support for filtering network traffic. If no additional filters are requested, gather unfiltered traffic.
Â
- Download & install Wireshark on any machines that are being troubleshot.
- Open Wireshark
- Run "C:\Program Files\Wireshark\Wireshark.exe"
- Or Launch from the 'fin' icon on the desktop.
- Within the Wireshark interface click Capture | Interfaces...
- In Wireshark: Capture Interfaces select the desired interface and click Start.
- The Capture window will open. This indicates that Wireshark is logging network traffic.
- Perform the task requested by Support.
- Once the requested task has been performed, stop the Wireshark Capture by clicking Capture | Stop
- Save the capture by clicking File | Save As
Â
- Enter a File Name and leave the Save as type as Wireshark/..-pcapng (.pcapng;*.pcapng.gz;*.ntar;*.ntar.gz), then click Save.
Â
- Locate the saved .pcapng, and send the file to support.
Information on the Tufts IT Knowledgebase is intended for IT Professionals at Tufts.
If you have a question about a Tufts IT service or computer/account support, please contact your IT support group.