Wireshark WCNA Wireshark Certified Network Analyst Exam Practice Test

By default, Wireshark will only dissect port 443 traffic as SSL/TLS traffic. If you are using another port for SSL/TLS communications, you must add that port number in the HTTP preferences setting for SSL/TLS ports.

The gratuitous ARP process is not required if a host is configured with a static IP address.

How can you quickly Identify all WLAN BSSIDs seen In a trace file?

The Protocol Hierarchy Statistics window helps identify unusual protocols and applications in captured traffic.

The Prepare a Filter feature creates a display filter in the display filter window, but does not apply the filter to the traffic.

Window scaling is established during the TCP handshake process to enable hosts to use larger window sizes than is 65,535.

Both the capture and display filter syntax for ARP requests and replies is arp.