Marking Packets with Wireshark

I've received several emails from our faithful readers asking what happened to the Wireshark tips and tricks.

I honestly haven't use Wireshark much in my last few gigs, but now I'm back, so lets get right to it.

I was working with someone who commented on Wireshark's marking feature. They commented what a useless feature it is and how they can’t figure out how to use it. "I accept your challenge", I shouted to myself.

I was showing him that you can filter, manually select and then save those specific packets saving a ton of time. I showed him how I keep the original file, and many other saved traces.

Having specific, smaller traces makes it easier to analyze and for third party applications to analyze.