Important Note: This article discusses third party software and web sites as a courtesy to Symantec customers wishing to use Wireshark, a product of the Wireshark Foundation company, in conjunction with troubleshooting issues with Symantec products such as Altiris Patch Management or Deployment Solution. Symantec does not own or manage these products and web sites, nor can Symantec Technical Support assist the customer in using Wireshark. The customer is advised to contact Wireshark Foundation directly for assistance in basic usage of their product. References here to Wireshark and third party web sites are therefore provided "AS IS" and the customer is advised to use them at their own risk.
How to capture a Wireshark packet trace
Many filter types can be applied to Wireshark, such as for UDP, TCP, IIS traffic, etc. Third party sites have compiled these, such as those from packetlife.net. Refer to these sites for additional information