This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Is This a Normal Traffic?

0

alt text I'm new to wireshark i capture my network traffic it seems abnormal, can anyone tell me is this a normal traffic or not? why its showing red and black color is it harmful?

asked 23 Jan '17, 20:41

Adi321's gravatar image

Adi321
1113
accept rate: 0%

One Answer:

3

Wireshark comes with a default set of colouring rules. TCP resets for example are marked red. TCP retransmits are marked black. Both (retransmits, resets) are pretty common for Internet traffic.

There are discussions in the Wireshark community if the default colouring rules are helpful or not for a newbie.

You can use both events to learn how TCP works.

answered 24 Jan '17, 01:19

Uli's gravatar image

Uli
9031515
accept rate: 29%

Thank You :)

(24 Jan '17, 11:44) Adi321