Wireshark 101 for engineers Training

  • Learn via: Classroom
  • Duration: 2 Days
  • Level: Intermediate
  • Price: From €2,128+VAT
We can host this training at your preferred location. Contact us!

Wireshark is a free network protocol analyser. This hands-on course provides a starting point for troubleshooting networks using Wireshark. The course concentrates on the Wireshark product and students will gain from the most from this course only if they already have a sound knowledge of the TCP/IP protocols.

TCP/IP Foundation for engineers (TPTCPIP)

By the end of the course delegates will be able to:

  • Download and install Wireshark.
  • Capture and analyse packets with Wireshark.
  • Configure capture and display filters.
  • Customise Wireshark.
  • Troubleshoot networks using Wireshark.

What is Wireshark?

Protocol analysers, Wireshark features, versions, troubleshooting techniques with Wireshark.

Installing Wireshark

Downloading Wireshark, UNIX issues, Microsoft issues, the role of winpcap, promiscuous mode, installing Wireshark. Wireshark documentation and help.

Downloading and installing Wireshark.

Capturing traffic

Starting and stopping basic packet captures, the packet list pane, packet details pane, packet bytes pane, interfaces, using Wireshark in a switched architecture.

Capturing packets with Wireshark.

Troubleshooting networks with Wireshark

Common packet flows.

Analysing a variety of problems with Wireshark.

Capture filters

Capture filter expressions, capture filter examples (host, port, network, protocol, worm), primitives, combining primitives, payload matching.

Configuring capture filters.

Working with captured packets

Live packet capture, saving to a file, capture file formats, reading capture files from other analysers, merging capture files, finding packets, going to a specific packet, display filters, display filter expressions.

Saving captured data, configuring display filters.

Analysis and statistics with Wireshark

Enabling/disabling protocols, user specified decodes, following TCP streams, protocol statistics, conversation lists, endpoint lists, I/O graphs, protocol specific statistics.

Using the analysis and statistics menus.

Command line tools

Tshark, capinfos, editcap, mergecap, text2pcap, idl2eth.

Using tshark.

Advanced issues

802.11 issues, management frames, monitor mode, packet reassembling, name resolution, customising Wireshark.

Customising name resolution.



Contact us for more detail about our trainings and for all other enquiries!

Upcoming Trainings

Join our public courses in our Istanbul, London and Ankara facilities. Private class trainings will be organized at the location of your preference, according to your schedule.

Classroom / Virtual Classroom
20 June 2024
Istanbul, Ankara, London
2 Days
Classroom / Virtual Classroom
22 June 2024
Istanbul, Ankara, London
2 Days
Classroom / Virtual Classroom
18 July 2024
Istanbul, Ankara, London
2 Days
Classroom / Virtual Classroom
06 August 2024
Istanbul, Ankara, London
€2,128 +VAT Book Now
Classroom / Virtual Classroom
04 August 2024
Istanbul, Ankara, London
2 Days
Classroom / Virtual Classroom
21 August 2024
Istanbul, Ankara, London
2 Days
Classroom / Virtual Classroom
01 September 2024
Istanbul, Ankara, London
2 Days
Classroom / Virtual Classroom
06 September 2024
Istanbul, Ankara, London
2 Days
By using this website you agree to let us use cookies. For further information about our use of cookies, check out our Cookie Policy.