Hi.
I tried to use Wireshark on Windows. I catched one three way handshake
from some foreign address on some ports greater than 1024. immediately
I run netstat -a -n , but I cannot find any corresponding connection
in this list. Does anybody know why ?
John:
A certain number of TCP Dup Acks are common, usually no more than one or
three per packet in any particular session. In our case we were seeing sixty
or over a hundred for individual packets - this is enough to cause
significant errors which brought down large-file-size FTP sessions for
Hi,
iam using wireshark Pc version (Version 0.99.6-SVN-21924 (SVN Rev 21924))
iam trying to decode the OID of the SNMP placket. I copied few mib's in the
way of .txt under the mib directory. But still it is not able to decode the OID.
Can anypne help me out in decoding the OID or
Hello,
While posting messages to a Network user group we were suggested to use
wireshark for TCP protocol analysis. We currently have a private network. The
network consists of one Dell laptop connected to a Netgear Ethernet 8 port
switch and recording device connected to the Ethernet switch.
Hi Maria,
Look in the TCP headers of the packets to see the Window Size field value.
In addition, you'll see that information in the Info column (Win=x). Also
consider selecting Analyze Expert Composite Info Notes - Wireshark has
Zero Window and Window Full alerts. Over at