Wireshark-users: Re: [Wireshark-users] Capture analysis

From: "Martin Visser" <martinvisser99@xxxxxxxxx>
Date: Wed, 3 Dec 2008 06:48:57 +1100
Rui,

If the slides and user guide don't provide enough insight, and you really are interested in learning about the protocols, you are probably going to hunt around for some good documentation that covers the protocols. Most protocols are described in the RFC, so head to http://ietf.org for these. There are some good books around on services like LDAP - usually you can't go wrong with books from O'Reilly.

Just remember, Wireshark is much like a stethoscope to a cardiac surgeon. Unfortunately to become a cardiac surgeon you need lots of training and experience to understand what the stethoscope is telling you!


Regards, Martin

MartinVisser99@xxxxxxxxx


On Wed, Dec 3, 2008 at 4:25 AM, Cabral, Rui <Rui.Cabral@xxxxxxxxx> wrote:
Hi all,
 
I am new with using wireshark, I have the User Guide which I use to learn how to use wireshark, nevertheless I wonder is anyone has or know if I can find a documentation or explanation on how to look at the capture file I have. For exemple if I do a capture on a LDAP authentication that is failing, I seen the protocols and but what does each line means..
 
Is there any "how to look(understand) at a capture log"
 
Allt he best,
 

Rui Cabral


_______________________________________________
Wireshark-users mailing list
Wireshark-users@xxxxxxxxxxxxx
https://wireshark.org/mailman/listinfo/wireshark-users