Wireshark QuickStart
Installation
Download: http://www.wireshark.org/download.html
This video really sums up installation and configuration: http://www.youtube.com/watch?v=IxeHm0BKdwc
Tuning your filter for a specific Host
Filters determine what you see when monitoring network traffic. There are capture filters and display filters.
Capture filters determine what is captured. This is the same syntax as tcpdump
Display Filters determine what shows up in the Wireshark GUI
My advice: Use the capture filter to filter by host. Use the display filter to then filter by protocol.
Links
Good Video: http://www.youtube.com/watch?v=IxeHm0BKdwc
Wireshark Display Filter Reference (http): http://www.wireshark.org/docs/dfref/h/http.htm
Back to Code