0

How to capture communication to/from servers in a domain?

CaptureFilter

asked 2021-12-07 12:54:34 +0000

Y6v7dKdxYt
1 ●1 ●2

updated 2021-12-07 13:17:01 +0000

In “Capture … using this filter” input box when I just open Wireshark, I want to specify a filter so that only communication to/from servers in a domain is captured.

https://www.techsolveprac.com/introdu...

But I don't find it in the above introduction. Would anybody show me the correct filter to capture communication to/from servers in a domain (e.g., google.com)?

edit retag flag offensive close merge delete

1 Answer

Sort by » oldest newest most voted

0

answered 2021-12-10 13:49:38 +0000

hugo.vanderkooij
76 ●182 ●4

If you want all traffic to and from a server with IP address 10.1.2.3

Capture filter : host 10.1.2.3

Display filter : ip.addr == 10.1.2.3

edit flag offensive delete link

Comments

That won't cover a domain which may cover many hosts, e.g. google.com

grahamb ( 2021-12-10 14:29:38 +0000 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Question Tools

2 followers

Stats

Asked: 2021-12-07 12:54:34 +0000

Seen: 428 times

Last updated: Dec 10 '21

Related questions

Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.

Powered by Askbot version 0.10.2