 | 1 | initial version |
When looking for something in packets that you don't know, start by filtering on what you do know. So, in the search of these sessions, do you know who (which IP address) was generating these sessions? And do you know when these sessions were generated?
You might also take a look at Statistics -> Conversations and browse through the TCP and UDP session list.
If that also does not work, then start filtering out everything that is not the traffic you are looking for. Make a filter not (udp.port in {53 123 [add other ports]} or tcp.port in {80 443 [add other ports]}) to make the list of packets to scroll through smaller. After doing this, you can open up Statistics -> Conversations again and enable Limit to display filter.
