Thanks. I need to try more with the wireshark help. I don't seem to always find what I am looking for.
Ron
-----Original Message-----
From: wireshark-users-bounces@xxxxxxxxxxxxx [mailto:wireshark-users-bounces@xxxxxxxxxxxxx] On Behalf Of DePriest, Jason R.
Sent: Thursday, May 20, 2010 10:18 AM
To: Community support list for Wireshark
Subject: Re: [Wireshark-users] Sniffing for multicast traffic
>From Wireshark help for capture filters
ether|ip broadcast|multicast
This primitive allows you to filter on either Ethernet or IP
broadcasts or multicasts.
So
tshark ether multicast or ip multicast
might work.
-Jason
On Thu, May 20, 2010 at 9:08 AM, Ronald Nutter <> wrote:
> I am getting ready to make a change to the network at my company and need to
> verify what traffic is going over multicast.
>
> I have been able to see existing multicast traffic by using a capture filter
> net 224.0.0.0/4. How can I see any multicast traffic that
>
> Is on the network and isn't using the normal multicast range ? Havent
> worked with multicast much, so just trying to be on the careful side.
>
>
>
> Ron
___________________________________________________________________________
Sent via: Wireshark-users mailing list <wireshark-users@xxxxxxxxxxxxx>
Archives: http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
mailto:wireshark-users-request@xxxxxxxxxxxxx?subject=unsubscribe
This e-mail and any files transmitted with it are confidential
and are intended solely for the use of the individual or entity
to whom they are addressed.
If you are NOT the intended recipient or the person responsible for
delivering the e-mail to the intended recipient,
be advised that you have received this e-mail in error and that any use,
dissemination, forwarding, printing or copying this e-mail is strictly prohibited.
