How do I limit packet capturing in Wireshark to only a specific protocol?

wireshark protocol ports network-protocols sniffing
31,164

Solution 1

In the filter field enter tcp.port eq 8080

Ref.: Wireshark: Help -> Manual pages -" Wireshark Filter ...

As far as I know this is an alternate HTTP port in TCP only:

HTTP alternate (http_alt)—commonly used for Web proxy and caching server, or for running a Web server as a non-root user and Apache Tomcat in TCP only

Ref.: http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers

Hope this help. Let us know. :)

Solution 2

You can also use a capture filter to filter out the udp packets:
not udp port 1900

You can find more information about capture filters in the Wireshark User's Guide or the Wireshark Wiki.

Solution 3

tcp.port == 8080

    

Share:
31,164

Related videos on Youtube

Jonas
Author by

Jonas

I'm a Computer Science student.

Updated on September 18, 2022

Comments

  • Jonas
    Jonas over 1 year

    I would like to listen to HTTP traffic on port 8080. When I start capturing packets in Wireshark, it's flooded by packets using the SSDP protocol on port 1900. I would like to limit the packet capturing to only HTTP or maybe only HTTP on port 8080. How can I do this in Wireshark?

    On File > Preferences... and under Protocols I have removed the 1900 port from HTTP and 8080 is already there.

    I have typed http in the "Filter" textfield, but it doesn't seem to have any effect.

  • Jonas
    Jonas about 12 years
    This returns a syntax error message.
  • Admin
    Admin about 12 years
    Did you use it a a display filter? This is a capture filter (not a display filter). You have to add it before you start capturing: Wireshark Capture | Options Add the capture and hit start. If you want to use Tshark to capture packets: $ tshark -i 4 -f "not udp port 1900" -w not_udp.pcap
  • Jonas
    Jonas about 12 years
    You can edit your other answer instead of posting another one.
  • Hippyjim
    Hippyjim almost 11 years
    This tells me it's not a valid capture filter, and i should use a display filter - any ideas?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Wireshark does not see interfaces (winXP)
Sniffing Facebook chats with Wireshark
How to capture HTTP packet with SharpPcap
how to capture only SMTP using latest Wireshark 2.2.6 or later
Usefulness of packets in wireshark? SSDP protocol, rather than HTTP?
Finding the external (PPPoE, WAN) MAC address of an ADSL router
how to see all network requests made by an application
Sniffing the Router for Packets
What does this UDP Packet mean?
Wireshark filtering for one network