From the course: Wireshark Essential Training
Join today to access over 22,700 courses taught by industry experts or purchase this course individually.
The Wireshark expert system - Wireshark Tutorial
From the course: Wireshark Essential Training
The Wireshark expert system
- [Instructor] Built within Wireshark is the expert system. The expert system helps to alert the network administrator on possible issues once a capture's been made. Keep in mind, it's only a guide. Sometimes it really isn't a problem, such as a checksum incorrectly calculated. When we go into the Expert Info Console, you'll see four categories. I say expert info because that's how you might see it referenced if you go into the Wireshark wiki. Now they're in order of severity. The first one is errors. You'll see a red circle that indicates serious problems. Yellow indicates warning. That means there's possible problems, you'll probably want to look into them. Cyan are notes of interest, and the blue are chats, which is typical workflow and state change. I've opened up this packet capture because it's a pretty good example, as it lists all four categories. Now if we take a look in the lower left-hand corner, the red circle indicates the highest level of threat, that there's possible…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.