LabEx
Log InJoin Free

What are common Wireshark filters?

QuestionsQuestions8 SkillsProInstall Configure and Analyze Network Traffic with WiresharkOct, 10 2025
083

Common Wireshark filters include:

  1. Host Filter:

    • host 192.168.0.2: Captures all traffic to or from the specified IP address.

  2. Network Filter:

    • net 10.0.0.0/24: Captures traffic from the specified network address and subnet mask.

  3. Port Filter:

    • port 80: Captures traffic on port 80, typically used for HTTP.

  4. Protocol Filter:

    • tcp: Captures all TCP traffic.
    • udp: Captures all UDP traffic.

  5. Combining Filters:

    • tcp and port 80: Captures TCP traffic specifically on port 80.
    • ip.addr == 93.184.215.14: Captures traffic to or from a specific IP address.
    • http.request.method == "GET": Captures all HTTP GET requests.

  6. Negation Filter:

    • not tcp: Captures all traffic that is not TCP.

  7. Complex Filters:

    • http.request.method == "GET" && http.host contains "example.com": Captures all GET requests to any domain containing "example.com".

These filters help you focus on specific types of traffic and analyze network data more effectively.

0 Comments

no data
Be the first to share your comment!