As the name implies, NNTP is used to send and receive (USENET) news.
The USENET (and therefore NNTP) is used since the early days of the internet.
Although Mailing lists and RSS feeds doing something similar, the USENET is still widely used today.
- TCP: Typically, NNTP uses TCP as its transport protocol. The well known TCP port for NNTP traffic is 119.
XXX - Add example traffic here (as plain text or Wireshark screenshot).
The PROTO dissector is (fully functional, partially functional, not existing, … whatever the current state is).
There are no NNTP specific preference settings.
XXX - Add a simple example capture file to the SampleCaptures page and link from here. Keep it short, it's also a good idea to gzip it to make it even smaller, as Wireshark can open gzipped files automatically.
A complete list of NNTP display filter fields can be found in the display filter reference
Show only the NNTP based traffic:
You cannot directly filter NNTP protocols while capturing. However, if you know the TCP port used (see above), you can filter on that one.
Imported from https://wiki.wireshark.org/NNTP on 2020-08-11 23:17:31 UTC