hugo.vanderkooij's profile - activity

Yes, The basic concepts are still the same and it will be a very useful book for you. At times things might looks slight

Look for the wireshark video's on youtube. Laura posted a number of great sessions.

What steps have you taken to decde it? TLS decryption does not work statically. If you could decode last months and not

What steps have you taken to decde it? TLS decryption does not work statically. If you could decode last months and not

Actually isn't that what your VPN is supposed to do? Depending on your VPN solution you may tap on the traffic on pseudo

It seems rather odd. As both system are in different subnets there is something connecting these two networks. This coul

Does the proxy do SSL Intercept? If not, Then the best thing is just to run your browser in debug mode. Otherwise let th

Actualy if you do a packet capture and just use the right mouse clcik and use follow tcp session you can look at just th

Option 5 : It goes to Ask Wireshark and asks it to do it's homework for them.

It goes to Ask Wireshark and asks it to do it's homework for them.

I would say that with the current lack of details about what you captured it is not possible to do so. First off you ne

Wireshark is not the tool you are looking for. Check out https://docs.microsoft.com/en-us/sysinternals/

From what you describe Wireshark is not for you. My guess you get a better understanding of things you look for by usin

Also note that the accuracy of Geo IP information is not 100%. So it's not perfect but a close estimation.

A full capture can give you good head start in pinpointning issues. But the exact reason why a system is slower might no

It's a choice. Historiclly it was common to learn ARP as soon as you got a packet. As everyting what you need is in the

I can think of (at least) 2 issues: 1. (Reverse) DNS is not working so you have to wait 2x 15 seconds for that timout.