This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Hi, I'm new to wireshark and have to use it to capture a ddos attack for an assignment.

I have the captured traffic, but every time I try to open the graph it shows no data. I'm not sure what filters to use; I've tried all the ones I can think of, and I'm and still getting nothing coming up.

All of the traffic captured is TCP protocol, hitting port 80. I have a TCP traffic filter, IP address (127.0.0.1), an all packets filter and a tcp.port == 80 || udp.port == 80.

Pleeease help me if possible, I am about to put my fist through the laptop.

Cheers

asked 20 Jun '17, 01:39

C19's gravatar image

C19
6112
accept rate: 0%

Which Wireshark version do you use? In 2.2.x (in my case, 2.2.7) you go Statistics -> I/O graph, and if you haven't used the graph before, you should have there two active traces - one named "All packets" with no display filter, and another one named TCP Errors with display filter tcp.analysis.flags. If you have something else there, click one of the lines and press the [-] button until the list is empty, then close the graph and open it again. You should see at least the "all packets" line.

Then, you can fill in the "display filter" field, press enter when the filter meets your needs, and then tick the checkbox next to the name as it unchecks after you change the filter.

Which of these steps does not work for you?

(20 Jun '17, 07:30) sindy
Be the first one to answer this question!
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×752
×349
×72

question asked: 20 Jun '17, 01:39

question was seen: 744 times

last updated: 20 Jun '17, 07:30

p​o​w​e​r​e​d by O​S​Q​A