This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

wireshark is not able to capture all packets

0

HI

when I am capturing packets on my lan card, i don't see all packets captured i don't see dns packets, response packets from destination servers These packets are captured in other laptops. Is there any settings issue?

BR Tanmay

asked 29 May '14, 23:59

tantmay's gravatar image

tantmay
11112
accept rate: 0%

One Answer:

0

These packets are captured in other laptops.

If only one system is affected, chances are that there is some kind of security software on that system which prevents Wireshark from seeing the whole traffic. We have seen this here whith the following classes of software

  • AV clients
  • Desktop Firewalls
  • VPN clients
  • Endpoint Security (especially Symantec)
  • Network Filter Drivers like: DNE LightWeight Filter and Trend Micro LightWeight Filter (uncheck them on the adapter)

See the questions with the following tags: outbound and/or outgoing. Although your problem seems to be related to incoming traffic, the problem might be caused by the same class of software!

Regards
Kurt

answered 30 May '14, 07:38

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%