WEBVTT 00:00.090 --> 00:08.820 In this lecture, we will learn how to use port numbers and port range filter to capture the traffic. 00:09.210 --> 00:19.320 Let's say you only want to capture the HTTPS traffic at HTTPS runs on port number four, four, three. 00:19.320 --> 00:19.770 Right. 00:19.770 --> 00:23.060 So filter four, that is a port four, four, three. 00:23.070 --> 00:24.960 We already have done it. 00:24.960 --> 00:31.890 Right now we can further, you know, narrow it down to UDP or TCP. 00:31.890 --> 00:35.590 So at the beginning you can specify TCP. 00:35.670 --> 00:45.450 Now this particular filter is only going to capture the TCP traffic on port number four, three, three, 00:45.600 --> 00:47.220 let me make it four for three. 00:47.280 --> 00:51.600 Let me click on start and I'm going to visit a new website. 00:51.600 --> 00:55.800 And you are not going to see any DNS queries here. 00:55.800 --> 01:03.270 As you can see, guys, under the protocol column, not a single UDP packet has been captured. 01:03.300 --> 01:03.690 Right? 01:03.690 --> 01:10.410 In the same way you can capture only UDP traffic as well. 01:10.440 --> 01:13.470 All you have to do replace the TCP with UDP. 01:13.470 --> 01:20.430 Now this filter is only going to capture UDP traffic on port number four, four, three. 01:20.460 --> 01:26.280 Now, as you can see, guys, Wireshark is only capturing the UDP traffic. 01:26.640 --> 01:29.850 The quick protocol uses UDP. 01:31.860 --> 01:36.060 Now, another filter for both numbers is the Ford Ranger. 01:36.090 --> 01:39.730 We can specify a range of port numbers. 01:39.750 --> 01:42.870 So type port range. 01:42.870 --> 01:47.010 Now give it a range, let's say 1 to 80. 01:47.250 --> 01:58.050 So, guys, this filter is only going to capture traffic on the specified range from a port number 1280. 01:58.080 --> 01:58.740 Right. 02:00.330 --> 02:08.820 As you can see, guys, it is capturing HTTP packets because we have specified the range from 1 to 8 02:08.820 --> 02:09.910 080. 02:09.930 --> 02:13.230 Port number runs the HTTP service. 02:13.440 --> 02:19.170 So back to the port range again and you can combine multiple ranges as well. 02:19.170 --> 02:23.550 So type or now give it another range. 02:23.550 --> 02:28.800 This time I'm going to specify from 400 to let's say four, four, three. 02:28.890 --> 02:37.470 Now this filter is going to capture traffic on the specified range from port number 1 to 8 zero and 02:37.470 --> 02:42.060 from a port number 400 to 443. 02:43.350 --> 02:49.020 Now, this time, we should be able to see the less traffic as well. 02:49.380 --> 02:49.740 All right. 02:49.740 --> 02:56.490 So, guys, that's how you can use the port range filter to specify the range.