Version 3.1.0 User’s Guide
Wireshark is the world’s foremost network protocol analyzer, but the rich feature set can be daunting for the unfamiliar. This document is part of an effort by the Wireshark team to improve Wireshark’s usability. We hope that you find it useful and look forward to your comments.
Who should read this document? The intended audience of this book is anyone using Wireshark. This book explains all of the basic and some advanced features of Wireshark. As Wireshark has become a very complex program, not every feature may be explained in this book. This book is not intended to explain network sniffing in general and it will not provide details about specific network protocols. A lot of useful information regarding these topics can be found at the Wireshark Wiki at https://wiki.wireshark.org/. By reading this book, you will learn how to install Wireshark, how to use the basic elements of the graphical user interface (such as the menu) and what’s behind some of the advanced features that are not always obvious at first sight. It will hopefully guide you around some common problems that frequently appear for new (and sometimes even advanced) Wireshark users.
Reference:
https://docsbay.net/wireshark-version-3-1-0-user-s-guide
How to Configure Wireshark
To configure Wireshark, perform these basic steps.
1 Define a capture point.
2 (Optional) Add or modify the capture point's parameters.
3 Activate or deactivate a capture point.
4 Delete the capture point when you are no longer using it.
Packet Capture Techniques
Groups of capture techniques
• Directly from the user PC or on a server
• Based on switch capabilities
• Via purpose-built devices
• In a virtual environment
On The Client: Advantages
• Easy to achieve
• Zero disruption to services
• Capture wireless traffic
• Capture VPN traffic inside the tunnel
Reference:
https://sharkfestus.wireshark.org/assets/presentations15/15.pdf
http://net.academy.lv/labwork/_net_LA-01EN_Wireshark1-Traffic.pdf