Shulou(Shulou.com)06/01 Report--

Teach you how to use wireshark software to grab packages from scratch

-- hundred dishes

The article is mainly for beginners who are interested in grasping data packets but have no way to start. Bloggers are learning the technology of the network. at first, they know nothing about data packets, and they don't know what to do if they want to see a data packet. I don't know how to do it. So today I would like to share with you my own experience, even if I have no idea or no contact, it doesn't matter much. I believe reading this blog can give you some inspiration more or less.

Don't talk too much nonsense and get to the point!

1. Experimental tool

A computer, Windows system, WireShark software

WireShark bloggers themselves use Version 2.0.2, the software installation is relatively simple, Baidu can find a lot, and then install step by step, but it may be in English, I suggest that there is no need to specifically turn the software into Chinese, learn to read English.

Software download address:

Http://rj.baidu.com/soft/detail/15788.html?ald

two。 A simple introduction to operation

2.1 after the software has been installed, open the interface.

What I would like to remind you here is that there are some computers whose npf (network packet filter) is not turned on. At this time, it is impossible to use the filter to capture packets. When you open the software, there will be a pop-up window:

But don't worry, just a few simple operations are needed (see below):

Run cmd (command processor) as an administrator, enter "net start npf", and get it done. Next, feel free to use it.

First of all, let's choose a network interface to grab the package (we can choose the interface we use to surf the Internet):

Then click Start

The following interface appears:

At this point, it means that no packets have been caught. Next, I will run cmd normally and type "ping www.baidu.com".

Ping Baidu server, will begin to grab the bag.

Note: when you catch a certain amount of data packets, you should stop grabbing packets, or you will keep catching them!

This is the end of the bag grab is successful!

According to the information displayed by the software, we can see:

Source IP address, destination IP address, protocol, packet length and packet information of each packet

If you want to have a more in-depth understanding of the composition of each protocol, information representation or more in-depth study, welcome to subscribe to my blog or add friends to study together.

I sincerely hope that it will be helpful to our friends.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.