hi, i would like to monitor the traffic on my client , to whome i have asked to open the fireall for port 55443 . the client is saying that it has opened the firewall port 55443, but my application is still failing . how can i check from the client side that my requests are comming to its server from my location from a forworded port 55443. I have checked wireshark on the client server but unable to find ant particular entry & unable to find single 55443 hit in the capture. How exactly can i check it ? asked 20 Mar '12, 04:42  paree |
One Answer:
You could use a display filter like tcp.port==55443. If no packets are shown you know that there was no communication on that port (unless your capture strategy is flawed and the packets were there, bypassing your Wireshark - which should not be the case if you capture ON the server). answered 20 Mar '12, 04:52  Jasper ♦♦ |
I have already tried tcp.port==55443 but it shows not a single packet is flowing and the client is saying that , he has opened the particular port . I am generated the traffic from my server to the ip of the client on port 55443 , but still no activity on wireshark installed on the client server.
Do you have multiple NICs? Maybe the traffic is bypassing the adapter you capture on... are you sure that the connection is established at all? You could do netstat -an on both client and server to check that.
sorry the remote client is not available for testing ; i will update you in couple of days about the testings. Anyways thank you very much for the suggestions.