| Description | This article describes how to use the built-in Wireshark packet capture functionality to capture DHCP Traffic. |
| Scope | FortiGate. |
| Solution |
In certain scenarios, capturing DHCP traffic can be helpful for troubleshooting. Packet capture in Wireshark format allows for detailed analysis of DHCP UDP traffic, making it easier to diagnose issues such as DHCP scope problems, rogue servers, and more.
To set up the packet capture navigate to Network -> Diagnostics.
Select the interface where the traffic will be captured and filter with the UDP ports 67 and 68 (DHCP default ports).
Optional: Configure 'Maximum captured packets' to limit the amount of data in the packet capture file.
Select 'Start Capture'. A preview of the captured packets will be displayed:
The capture will finish until the 'Maximum Captured Packets' is reached or the 'Stop Capture' option is selected. Select 'Save as pcap' to download the Wireshark packet capture:
The capture can now be opened using Wireshark:
Related articles: Technical Tip: Diagnosing DHCP on a FortiGate Troubleshooting Tip: Check DHCP Messages with VLAN Tag using Wireshark Packet Capture Troubleshooting Tip: FortiGate is not providing DHCP with error DHCP DECLINE |
Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Spring Badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Support Forum
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiADC
- FortiAIOps
- FortiAnalyzer
- FortiAP
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEdgeCloud
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiGuest
- FortiInsight
- FortiIsolator
- FortiMail
- FortiMonitor
- FortiManager
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPortal
- FortiPresence
- FortiSRA
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiScan
- FortiSandbox
- FortiSASE
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiWAN
- FortiToken
- FortiVoice
- FortiWeb
- FortiAppSec Cloud
- RMA Information and Announcements
- Lacework
- Wireless Controller
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
- Fortinet Community
- Knowledge Base
- FortiGate
- Technical Tip: How to configure a Wireshark packet...
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2025 Fortinet, Inc. All Rights Reserved.