From Fedora Project Wiki

Revision as of 07:35, 30 May 2011 by Athmane (talk | contribs) (Created page with '{{QA/Test_Case |description=This test case tests the ability of Wireshark to capture and analyze network traffic. |setup= # Ensure the {{package|wireshark}}, {{package|wireshark-...')
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Description

This test case tests the ability of Wireshark to capture and analyze network traffic.

Setup

  1. Ensure the wireshark, wireshark-gnome packages are installed.

How to test

  1. Add the current user to wireshark group: su -c 'usermod -a -G wireshark <username>'
  2. Start capturing network traffic on eth0: wireshark -i eth0 -k
  3. Do some network activities, like go to some website, ssh/ping a remote host.
  4. Stop capturing traffic.
  5. Save file as: /tmp/test.pcap
  6. Close Wireshark
  7. Open the saved file with Wireshark: wireshark /tmp/test.pcap
  8. Try to use the Filter eg: filter by HTTP, SSH etc...
  9. Try to use Follow TCP stream functionality.
  10. Close Wireshark

Expected Results

  1. You should see Wireshark capturing packets.
  2. Filer and Follow TCP stream should work.
  3. Wireshark should works as expected without crashes.