How to Capture Simultaneous Wireshark Traces from Client and Server for Network Troubleshooting by info.odysseyx@gmail.com September 14, 2024 written by info.odysseyx@gmail.com September 14, 2024 0 comment 19 views 19 introduction: I have seen clients troubleshoot issues with their IIS hosted applications on their networks. Often in network troubleshooting, you need to capture packets from both the client and the server to fully understand what is happening during the communication. Wireshark, an essential tool for network analysis, can help with this, but capturing from both sides simultaneously requires careful planning. This approach provides a complete view of the communication and helps identify the problem more effectively. In this blog, we will walk through the process of capturing Wireshark traces simultaneously on both client and server sides, providing a clearer picture of network flows and potential issues. Should we start with Wireshark?: Wireshark is a free, open source network capture and network analysis tool that is widely used worldwide. It is not installed by default on any operating system, so customers must download and install it on their devices. Here’s what you need to use it for: Tools on the official website Wireshark · Download Administrator access to both clients and servers Now we will capture the traces. Launch Wireshark. On your Windows computer, open the Start menu and type: Wireshark Right-click on Wireshark in the search box and select Run as administrator Wireshark captures traffic from all network adapters and network interface cards, but you can isolate one to capture using the capture menu that appears when Wireshark opens. A line next to the interface name indicates whether traffic is currently flowing through the interface, which can help you choose if necessary. Select from the toolbar menu capture -> startAlternatively, you can select the blue shark fin button to start a network capture. Set this on both client and server now. Reproduce the problem If you want to investigate, packet details will scroll through while the capture is running. After reproducing the problem, from the toolbar menu, select: capture -> haltAlternatively, you can stop tracking by clicking the red square button. Select from the toolbar menu file -> Save as. In the Save As dialog box, you can save the trace in the default Wireshark trace format, *.pcapng, or change it to: Save as type With drop down menu Microsoft Netmon 2.x Then save the trace as *.cap so that you can open it using Netmon. Now you have a troubleshooting log ready for comprehensive review. Source link Share 0 FacebookTwitterPinterestEmail info.odysseyx@gmail.com previous post National Institute of Mental Health: Research Partnerships to Scale Up Mental Health Interventions – fundsforNGOs next post NIH Director’s New Innovator Award Program: Supporting Early-Stage Researchers – fundsforNGOs You may also like Why Texas is the ideal home for Apple’s AI Data Center February 27, 2025 AdTAC Agency Cheg has sued Google in AI Overviews February 26, 2025 Apple’s iPhone 16-Launch Launch Event: A sign of things coming? February 25, 2025 Intel’s Modular concept: Why is the time to rewrite the laptop design February 24, 2025 Ride-sharing and Robotaxis Decopled Revenue Model Problems February 17, 2025 Web Raiders run the Global Brut Force attack from 2.5M IPS February 12, 2025 Leave a Comment Cancel Reply Save my name, email, and website in this browser for the next time I comment.