This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

I want to build a firewall(Packet Filter Mechanism). How WireShark can help me in this regard? Is there any function available in WireShark by which i can discard an abnormally detected packet?

asked 17 Apr '11, 11:10

Avik's gravatar image

Avik
1111
accept rate: 0%


Wireshark was not made to interfere with traffic, it is made to record and analyze traffic. You can't influence traffic flows with wireshark. You will need to look for another tool to do that.

Some suggestions that might get you what you need:

  • pfSense, an open source firewall
  • m0n0wall, another open source firewall
  • snort, an open source Intrusion Detection and Prevention system (which might be what your looking for since you seek to filter abnormal packets)
permanent link

answered 17 Apr '11, 11:34

SYN-bit's gravatar image

SYN-bit ♦♦
17.1k957245
accept rate: 20%

edited 18 Apr '11, 23:57

oh! thank you.. The resources you provided are awesome.

(18 Apr '11, 23:54) Avik
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×23

question asked: 17 Apr '11, 11:10

question was seen: 2,417 times

last updated: 18 Apr '11, 23:57

p​o​w​e​r​e​d by O​S​Q​A