voor zoeken druk op CTRL + F

keer terug naar de wireshark pagina

 

FILE VAN MENUBALK

 

Open...
This menu item brings up the file open dialog box that allows you to load a capture file for viewing. It is discussed in more detail in Section 5.2.1, “The "Open Capture File" dialog box”.

Open Recent 
This menu item shows a submenu containing the recently opened capture files. Clicking on one of the submenu items will open the corresponding capture file directly.

Merge... 
This menu item brings up the merge file dialog box that allows you to merge a capture file into the currently loaded one. It is discussed in more detail in Section 5.4, “Merging capture files”.

Close
This menu item closes the current capture. If you haven't saved the capture, you will be asked to do so first (this can be disabled by a preference setting).

Save
This menu item saves the current capture. If you have not set a default capture file name (perhaps with the -w <capfile> option), Wireshark pops up the Save Capture File As dialog box (which is discussed further in Section 5.3.1, “The "Save Capture File As" dialog box”).
Save As...Shift+Ctrl+S
This menu item allows you to save the current capture file to whatever file you would like. It pops up the Save Capture File As dialog box (which is discussed further in Section 5.3.1, “The "Save Capture File As" dialog box”).
File Set > List Files 
This menu item allows you to show a list of files in a file set. It pops up the Wireshark List File Set dialog box (which is discussed further in Section 5.5, “File Sets”).

File Set > Next File 
If the currently loaded file is part of a file set, jump to the next file in the set. If it isn't part of a file set or just the last file in that set, this item is greyed out.

File Set > Previous File 
If the currently loaded file is part of a file set, jump to the previous file in the set. If it isn't part of a file set or just the first file in that set, this item is greyed out.

Export > as "Plain Text" file... 
This menu item allows you to export all (or some) of the packets in the capture file to a plain ASCII text file. It pops up the Wireshark Export dialog box (which is discussed further in Section 5.6.1, “The "Export as Plain Text File" dialog box”).

Export > as "PostScript" file... 
This menu item allows you to export all (or some) of the packets in the capture file to a PostScript file. It pops up the Wireshark Export dialog box (which is discussed further in Section 5.6.2, “The "Export as PostScript File" dialog box”).

Export > as "CSV" (Comma Separated Values packet summary) file... 
This menu item allows you to export all (or some) of the packet summaries in the capture file to a .csv file (e.g. used by spreadsheet programs). It pops up the Wireshark Export dialog box (which is discussed further in Section 5.6.3, “The "Export as CSV (Comma Separated Values) File" dialog box”).

Export > as "PSML" file... 
This menu item allows you to export all (or some) of the packets in the capture file to a PSML (packet summary markup language) XML file. It pops up the Wireshark Export dialog box (which is discussed further in Section 5.6.4, “The "Export as PSML File" dialog box”).

Export > as "PDML" file... 
This menu item allows you to export all (or some) of the packets in the capture file to a PDML (packet details markup language) XML file. It pops up the Wireshark Export dialog box (which is discussed further in Section 5.6.5, “The "Export as PDML File" dialog box”).

Export > Selected Packet Bytes...Ctrl+H
This menu item allows you to export the currently selected bytes in the packet bytes pane to a binary file. It pops up the Wireshark Export dialog box (which is discussed further in Section 5.6.6, “The "Export selected packet bytes" dialog box”)

Print...
This menu item allows you to print all (or some) of the packets in the capture file. It pops up the Wireshark Print dialog box (which is discussed further in Section 5.7, “Printing packets”).

Quit
This menu item allows you to quit from Wireshark. Wireshark will ask to save your capture file if you haven't saved it before (this can be disabled by a preference setting).

 

 

 

 

 

 

 

 

 

EDIT VAN MENUBALK

Copy > As Filter
This menu item will use the selected item in the detail view to create a display filter. This display filter is then copied to the clipboard.

Find Packet...
This menu item brings up a dialog box that allows you to find a packet by many criteria. There is further information on finding packets in Section 6.7, “Finding packets”.
Find Next
This menu item tries to find the next packet matching the settings from "Find Packet..."

Find Previous
This menu item tries to find the previous packet matching the settings from "Find Packet...".

Mark Packet (toggle)
This menu item "marks" the currently selected packet. See Section 6.9, “Marking packets” for details.
Find Next Mark
Find the next marked packet.

Find Previous Mark
Find the previous marked packet.

Mark All Packets 
This menu item "marks" all packets.

Unmark All Packets 
This menu item "unmarks" all marked packets.

Set Time Reference (toggle)
This menu item set a time reference on the currently selected packet. See Section 6.10.1, “Packet time referencing” for more information about the time referenced packets.

Find Next Reference 
This menu item tries to find the next time referenced packet.

Find Previous Reference
This menu item tries to find the previous time referenced packet.

Preferences...Shift+Ctrl+P
This menu item brings up a dialog box that allows you to set preferences for many parameters that control Wireshark. You can also save your preferences so Wireshark will use them the next time you start it. More detail is provided in Section 9.5, “Preferences”.

 

 

 

VIEW VAN MENUBALK

Main Toolbar 
This menu item hides or shows the main toolbar, see Section 3.13, “The "Main" toolbar”.
Filter Toolbar 
This menu item hides or shows the filter toolbar, see Section 3.14, “The "Filter" toolbar”.
Statusbar 
This menu item hides or shows the statusbar, see Section 3.18, “The Statusbar”.
Packet List 
This menu item hides or shows the packet list pane, see Section 3.15, “The "Packet List" pane”.
Packet Details 
This menu item hides or shows the packet details pane, see Section 3.16, “The "Packet Details" pane”.
Packet Bytes 
This menu item hides or shows the packet bytes pane, see Section 3.17, “The "Packet Bytes" pane”.
Time Display Format > Date and Time of Day: 1970-01-01 01:02:03.123456 
Selecting this tells Wireshark to display the time stamps in date and time of day format, see Section 6.10, “Time display formats and time references”.
Name Resolution > Resolve Name 
This item allows you to trigger a name resolve of the current packet only, see Section 7.7, “Name Resolution”.
Name Resolution > Enable for MAC Layer 
This item allows you to control whether or not Wireshark translates MAC addresses into names, see Section 7.7, “Name Resolution”.
Name Resolution > Enable for Network Layer 
This item allows you to control whether or not Wireshark translates network addresses into names, see Section 7.7, “Name Resolution”.
Name Resolution > Enable for Transport Layer 
This item allows you to control whether or not Wireshark translates transport addresses into names, see Section 7.7, “Name Resolution”.
Colorize Packet List 
This item allows you to control whether or not Wireshark should colorize the packet list.
Auto Scroll in Live Capture 
This item allows you to specify that Wireshark should scroll the packet list pane as new packets come in, so you are always looking at the last packet. If you do not specify this, Wireshark simply adds new packets onto the end of the list, but does not scroll the packet list pane.
Zoom In
Zoom into the packet data (increase the font size).
Zoom Out-
Zoom out of the packet data (decrease the font size).
Normal Size
Set zoom level back to 100% (set font size back to normal).
Resize All Columns 
Resize all column widths so the content will fit into it.
Expand Subtrees 
This menu item expands the currently selected subtree in the packet details tree.

Expand All 
Wireshark keeps a list of all the protocol subtrees that are expanded, and uses it to ensure that the correct subtrees are expanded when you display a packet. This menu item expands all subtrees in all packets in the capture.
Collapse All 
This menu item collapses the tree view of all packets in the capture list.
Coloring Converation 
This menu item brings up a submenu that allows you to color packets in the packet list pane based on the addresses of the currently selected packet. This makes it easy to distinguish packets belonging to different conversations. Section 9.3, “Packet colorization”.
Coloring Converation > Color 1-10 
These menu items enable one of the ten temporary color filters based on the currently selected conversation.
Coloring Converation > Reset coloring 
This menu item clears all temporary coloring rules.
Coloring Converation > New Coloring Rule... 
This menu item opens a dialog window in which a new permanent coloring rule can be created based on the currently selected conversation.
Coloring Rules... 
This menu item brings up a dialog box that allows you to color packets in the packet list pane according to filter expressions you choose. It can be very useful for spotting certain types of packets, see Section 9.3, “Packet colorization”.
Show Packet in New Window 
This menu item brings up the selected packet in a separate window. The separate window shows only the tree view and byte view panes.
Reload
This menu item allows you to reload the current capture file.

 

 

 

 

 

 

 

 

 

 

 

GO VAN  MENUBALK

Back
Jump to the recently visited packet in the packet history, much like the page history in a web browser.

Forward
Jump to the next visited packet in the packet history, much like the page history in a web browser.

Go to Packet...
Bring up a dialog box that allows you to specify a packet number, and then goes to that packet. See Section 6.8, “Go to a specific packet” for details.

Go to Corresponding Packet 
Go to the corresponding packet of the currently selected protocol field. If the selected field doesn't correspond to a packet, this item is greyed out.

Previous Packet
Move to the previous packet in the list. This can be used to move to the previous packet even if the packet list doesn't have keyboard focus.

Next Packet
Move to the next packet in the list. This can be used to move to the previous packet even if the packet list doesn't have keyboard focus.

First Packet 
Jump to the first packet of the capture file.

Last Packet 
Jump to the last packet of the capture file.

 

 

 

 

 

 

 

 

 

CAPTURE VAN MENUBALK

 

Interfaces... 
This menu item brings up a dialog box that shows what's going on at the network interfaces Wireshark knows of, see Section 4.4, “The "Capture Interfaces" dialog box”) .

Options...Ctrl+K
This menu item brings up the Capture Options dialog box (discussed further in Section 4.5, “The "Capture Options" dialog box”) and allows you to start capturing packets.

Start 
Immediately start capturing packets with the same settings than the last time.

StopCtrl+E
This menu item stops the currently running capture, see Section 4.9.1, “Stop the running capture”) .

Restart 
This menu item stops the currently running capture and starts again with the same options, this is just for convenience.

Capture Filters... 
This menu item brings up a dialog box that allows you to create and edit capture filters. You can name filters, and you can save them for future use. More detail on this subject is provided in Section 6.6, “Defining and saving filters”

 

 

 

 

 

 

 

 

 

 

 

 

ANALYSE  VAN MENUBALK

Display Filters... 
This menu item brings up a dialog box that allows you to create and edit display filters. You can name filters, and you can save them for future use. More detail on this subject is provided in Section 6.6, “Defining and saving filters”
Apply as Filter > ... 
These menu items will change the current display filter and apply the changed filter immediately. Depending on the chosen menu item, the current display filter string will be replaced or appended to by the selected protocol field in the packet details pane.
Prepare a Filter > ... 
These menu items will change the current display filter but won't apply the changed filter. Depending on the chosen menu item, the current display filter string will be replaced or appended to by the selected protocol field in the packet details pane.
Firewall ACL Rules 
This allows you to create command-line ACL rules for many different firewall products, including Cisco IOS, Linux Netfilter (iptables), OpenBSD pf and Windows Firewall (via netsh). Rules for MAC addresses, IPv4 addresses, TCP and UDP ports, and IPv4+port combinations are supported.
It is assumed that the rules will be applied to an outside interface.
Enabled Protocols...
This menu item allows the user to enable/disable protocol dissectors, see Section 9.4.1, “The "Enabled Protocols" dialog box”
Decode As... 
This menu item allows the user to force Wireshark to decode certain packets as a particular protocol, see Section 9.4.2, “User Specified Decodes”
User Specified Decodes... 
This menu item allows the user to force Wireshark to decode certain packets as a particular protocol, see Section 9.4.3, “Show User Specified Decodes”
Follow TCP Stream 
This menu item brings up a separate window and displays all the TCP segments captured that are on the same TCP connection as a selected packet, see Section 7.2, “Following TCP streams”
Follow UDP Stream 
Same functionality as "Follow TCP Stream" but for UDP streams.
Follow SSL Stream 
Same functionality as "Follow TCP Stream" but for SSL streams. XXX - how to provide the SSL keys?
Expert Info 
Open a dialog showing some expert information about the captured packets in a log style display. The amount of information will depend on the protocol and varies from very detailed to none existing. This is currently a work in progress. XXX - add a new section about this and link from here
Expert Info Composite 
Same information as in "Expert Info" but trying to group items together for faster analysis.

 

DE STATISTICS MENU

Summary 
Show information about the data captured, see Section 8.2, “The "Summary" window”.

Protocol Hierarchy 
Display a hierarchical tree of protocol statistics, see Section 8.3, “The "Protocol Hierarchy" window”.

Conversations 
Display a list of conversations (traffic between two endpoints), see Section 8.4.2, “The "Conversations" window”.

Endpoints 
Display a list of endpoints (traffic to/from an address), see Section 8.5.2, “The "Endpoints" window”.

IO Graphs 
Display user specified graphs (e.g. the number of packets in the course of time), see Section 8.6, “The "IO Graphs" window”.

Conversation List Display a list of conversations, obsoleted by the combined window of Conversations above, see Section 8.4.3, “The protocol specific "Conversation List" windows”.

Endpoint List 
Display a list of endpoints, obsoleted by the combined window of Endpoints above, see Section 8.5.3, “The protocol specific "Endpoint List" windows”.

Service Response Time 
Display the time between a request and the corresponding response, see Section 8.8, “Service Response Time”.