{"id":41869,"date":"2026-06-22T08:52:47","date_gmt":"2026-06-22T01:52:47","guid":{"rendered":"https:\/\/interdata.vn\/blog\/?p=41869"},"modified":"2026-06-22T08:53:55","modified_gmt":"2026-06-22T01:53:55","slug":"wireshark-la-gi","status":"publish","type":"post","link":"https:\/\/interdata.vn\/blog\/wireshark-la-gi\/","title":{"rendered":"Wireshark L\u00e0 G\u00ec? H\u01b0\u1edbng D\u1eabn B\u1eaft G\u00f3i Tin To\u00e0n T\u1eadp"},"content":{"rendered":"\n\n<style>\n.interdata-plan-carousel{--blue:#005bea;--blue-dark:#004dcc;--text:#071832;--border:#d8e6fb;--bg:#f3f8ff;container-type:inline-size;background:var(--bg);padding:14px 12px;overflow:hidden}\n.interdata-carousel-heading{color:#003fbd;font-size:18px;line-height:1.35;font-weight:800;text-align:center;margin:0 0 14px}\n.interdata-plan-track{display:flex;gap:12px;overflow-x:auto;scroll-snap-type:x mandatory;padding:0 0 8px;-webkit-overflow-scrolling:touch;scrollbar-width:none}\n.interdata-plan-track::-webkit-scrollbar{display:none}\n.interdata-plan-card,.interdata-plan-card *{box-sizing:border-box}\n.interdata-plan-card{flex:0 0 calc(25% - 9px);min-width:205px;background:#fff;border:1px solid var(--border);border-radius:8px;padding:18px 14px 14px;min-height:382px;display:flex;flex-direction:column;scroll-snap-align:start;box-shadow:0 5px 14px rgba(0,62,145,.08)}\n.interdata-plan-title{color:var(--blue-dark);font-size:17px;line-height:1.25;font-weight:800;text-align:center;margin:0 0 8px}\n.interdata-plan-price{color:var(--blue-dark);font-size:32px;line-height:1;font-weight:900;text-align:center;margin-bottom:14px;white-space:nowrap;letter-spacing:0}\n.interdata-plan-price span{font-size:12px;font-weight:800;margin-left:2px}\n.interdata-plan-badge{align-self:center;display:inline-flex;align-items:center;justify-content:center;background:#ff3934;color:#fff;border-radius:5px;padding:8px 10px;font-size:10px;line-height:1;font-weight:800;margin-bottom:18px;white-space:nowrap}\n.interdata-plan-features{list-style:none!important;padding:0!important;margin:0!important}\n.interdata-plan-features li{display:flex;gap:8px;align-items:flex-start;color:var(--text);font-size:13px;line-height:1.35;font-weight:700;text-align:left;margin:0 0 11px!important;padding:0!important}\n.interdata-plan-icon{width:15px;min-width:15px;height:15px;color:#0069ff;margin-top:2px}\n.interdata-plan-icon svg{display:block;width:100%;height:100%;fill:none;stroke:currentColor;stroke-width:2;stroke-linecap:round;stroke-linejoin:round}\n.interdata-plan-spacer{flex:1}\n.interdata-plan-button{display:flex;align-items:center;justify-content:center;min-height:44px;width:100%;background:var(--blue);color:#fff!important;border-radius:5px;font-size:14px;font-weight:800;text-decoration:none!important;box-shadow:0 7px 14px rgba(0,91,234,.24);transition:transform .2s ease,background .2s ease}\n.interdata-plan-button:hover{background:var(--blue-dark);color:#fff!important;transform:translateY(-1px)}\n@container (max-width:860px){.interdata-plan-card{flex-basis:calc(33.333% - 8px);min-width:205px}}\n@container (max-width:640px){.interdata-plan-card{flex-basis:calc(50% - 7px);min-width:215px}}\n@container (max-width:480px){.interdata-plan-carousel{padding:12px 10px}.interdata-carousel-heading{font-size:16px}.interdata-plan-card{flex-basis:86%;min-width:235px}.interdata-plan-price{font-size:31px}}\n@media (max-width:360px){.interdata-plan-card{flex-basis:90%;min-width:220px}.interdata-plan-price{font-size:29px}.interdata-plan-badge{font-size:9px}}\n<\/style>\n\n<div class=\"interdata-plan-carousel\">\n  <div class=\"interdata-carousel-heading\"><span style=\"font-family: Roboto, sans-serif; color: red;\">Si\u00eau \u01afu \u0110\u00e3i VPS \/ CLOUD SERVER - Ti\u1ebft Ki\u1ec7m \u0110\u1ebfn 70%<\/span><\/div>\n\n  <svg width=\"0\" height=\"0\" style=\"position:absolute;visibility:hidden\" aria-hidden=\"true\">\n    <symbol id=\"id-icon-cpu\" viewBox=\"0 0 24 24\"><rect x=\"7\" y=\"7\" width=\"10\" height=\"10\" rx=\"2\"><\/rect><path d=\"M4 9h3M4 15h3M17 9h3M17 15h3M9 4v3M15 4v3M9 17v3M15 17v3\"><\/path><path d=\"M10 10h4v4h-4z\"><\/path><\/symbol>\n    <symbol id=\"id-icon-ram\" viewBox=\"0 0 24 24\"><rect x=\"4\" y=\"8\" width=\"16\" height=\"8\" rx=\"2\"><\/rect><path d=\"M7 16v2M11 16v2M15 16v2M19 16v2M7 11h1M11 11h1M15 11h1\"><\/path><\/symbol>\n    <symbol id=\"id-icon-storage\" viewBox=\"0 0 24 24\"><rect x=\"6\" y=\"3\" width=\"12\" height=\"18\" rx=\"2\"><\/rect><path d=\"M9 7h6\"><\/path><circle cx=\"12\" cy=\"16\" r=\"1.5\"><\/circle><\/symbol>\n    <symbol id=\"id-icon-network\" viewBox=\"0 0 24 24\"><path d=\"M5 12.5a10 10 0 0 1 14 0\"><\/path><path d=\"M8.5 16a5 5 0 0 1 7 0\"><\/path><path d=\"M12 19h.01\"><\/path><\/symbol>\n    <symbol id=\"id-icon-gift\" viewBox=\"0 0 24 24\"><rect x=\"3\" y=\"8\" width=\"18\" height=\"13\" rx=\"2\"><\/rect><path d=\"M12 8v13M3 12h18\"><\/path><path d=\"M7.5 8C6.1 8 5 6.9 5 5.5S6.1 3 7.5 3C10 3 12 8 12 8\"><\/path><path d=\"M16.5 8C17.9 8 19 6.9 19 5.5S17.9 3 16.5 3C14 3 12 8 12 8\"><\/path><\/symbol>\n  <\/svg>\n\n  <div class=\"interdata-plan-track\">\n    <article class=\"interdata-plan-card\">\n      <h3 class=\"interdata-plan-title\">Premium Base<\/h3>\n      <div class=\"interdata-plan-price\">299K<span>\/3 Th\u00e1ng<\/span><\/div>\n      <div class=\"interdata-plan-badge\">GIA H\u1ea0N KH\u00d4NG \u0110\u1ed4I GI\u00c1<\/div>\n      <ul class=\"interdata-plan-features\">\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-cpu\"><\/use><\/svg><\/span>2 vCore Intel Xeon Scalable<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-ram\"><\/use><\/svg><\/span>2 GB RAM<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-storage\"><\/use><\/svg><\/span>30 GB NVMe U.2<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-network\"><\/use><\/svg><\/span>Network: 300 Mbps<\/li>\n      <\/ul>\n      <div class=\"interdata-plan-spacer\"><\/div>\n      <a class=\"interdata-plan-button\" href=\"https:\/\/support.interdata.vn\/index.php?rp=\/store\/best-value-plans-2026\/best-value-plans-premium-base\" target=\"_blank\" rel=\"nofollow sponsored noopener\">\u0110\u0103ng k\u00fd ngay<\/a>\n    <\/article>\n\n    <article class=\"interdata-plan-card\">\n      <h3 class=\"interdata-plan-title\">Premium Base<\/h3>\n      <div class=\"interdata-plan-price\">999K<span>\/n\u0103m<\/span><\/div>\n      <div class=\"interdata-plan-badge\">GIA H\u1ea0N KH\u00d4NG \u0110\u1ed4I GI\u00c1<\/div>\n      <ul class=\"interdata-plan-features\">\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-cpu\"><\/use><\/svg><\/span>3 vCore Intel Xeon<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-ram\"><\/use><\/svg><\/span>3 GB RAM<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-storage\"><\/use><\/svg><\/span>30 GB SSD NVMe U.2<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-network\"><\/use><\/svg><\/span>Network: 300 Mbps<\/li>\n      <\/ul>\n      <div class=\"interdata-plan-spacer\"><\/div>\n      <a class=\"interdata-plan-button\" href=\"https:\/\/support.interdata.vn\/index.php?rp=\/store\/cyber-week-2026\/premium-base\" target=\"_blank\" rel=\"nofollow sponsored noopener\">\u0110\u0103ng k\u00fd ngay<\/a>\n    <\/article>\n\n    <article class=\"interdata-plan-card\">\n      <h3 class=\"interdata-plan-title\">Premium Pro<\/h3>\n      <div class=\"interdata-plan-price\">2.599K<span>\/n\u0103m<\/span><\/div>\n      <div class=\"interdata-plan-badge\">GIA H\u1ea0N KH\u00d4NG \u0110\u1ed4I GI\u00c1<\/div>\n      <ul class=\"interdata-plan-features\">\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-cpu\"><\/use><\/svg><\/span>6 vCore Intel Xeon Scalable<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-ram\"><\/use><\/svg><\/span>8 GB RAM<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-storage\"><\/use><\/svg><\/span>80 GB SSD NVMe U.2<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-network\"><\/use><\/svg><\/span>Network: 350 Mbps<\/li>\n      <\/ul>\n      <div class=\"interdata-plan-spacer\"><\/div>\n      <a class=\"interdata-plan-button\" href=\"https:\/\/support.interdata.vn\/index.php?rp=\/store\/cyber-week-2026\/premium-pro\" target=\"_blank\" rel=\"nofollow sponsored noopener\">\u0110\u0103ng k\u00fd ngay<\/a>\n    <\/article>\n\n    <article class=\"interdata-plan-card\">\n      <h3 class=\"interdata-plan-title\">Cloud-Day - Base<\/h3>\n      <div class=\"interdata-plan-price\">2.666K<span>\/n\u0103m<\/span><\/div>\n      <div class=\"interdata-plan-badge\">GIA H\u1ea0N KH\u00d4NG \u0110\u1ed4I GI\u00c1<\/div>\n      <ul class=\"interdata-plan-features\">\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-gift\"><\/use><\/svg><\/span>T\u1eb7ng 80 GB S3 v\u00e0 1 N\u0102M S\u1eec D\u1ee4NG khi mua 2 n\u0103m tr\u1edf l\u00ean<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-cpu\"><\/use><\/svg><\/span>4 vCPU AMD EPYC<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-ram\"><\/use><\/svg><\/span>6 GB RAM<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-storage\"><\/use><\/svg><\/span>60 GB SSD NVMe U.2<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-network\"><\/use><\/svg><\/span>Network: 10 Gbps<\/li>\n      <\/ul>\n      <div class=\"interdata-plan-spacer\"><\/div>\n      <a class=\"interdata-plan-button\" href=\"https:\/\/support.interdata.vn\/index.php?rp=\/store\/cloud-day-by-interdata-2026\/cloud-day-base\" target=\"_blank\" rel=\"nofollow sponsored noopener\">\u0110\u0103ng k\u00fd ngay<\/a>\n    <\/article>\n  <\/div>\n<\/div>\n\n\t<div id=\"gap-1872366665\" class=\"gap-element clearfix\" style=\"display:block; height:auto;\">\n\t\t\n<style>\n#gap-1872366665 {\n  padding-top: 30px;\n}\n<\/style>\n\t<\/div>\n\t\n<p style=\"text-align: justify;\"><span style=\"font-size: 100%;\">Khi website \u0111\u1ed9t ng\u1ed9t t\u1eeb ch\u1ed1i k\u1ebft n\u1ed1i ho\u1eb7c API ph\u1ea3n h\u1ed3i ch\u1eadm b\u1ea5t th\u01b0\u1eddng, vi\u1ec7c \u0111o\u00e1n m\u00f2 nguy\u00ean nh\u00e2n qua file log c\u01a1 b\u1ea3n th\u01b0\u1eddng \u0111i v\u00e0o ng\u00f5 c\u1ee5t. \u0110\u00f3 l\u00e0 l\u00fac b\u1ea1n c\u1ea7n \u0111\u1ebfn <strong>wireshark<\/strong>. B\u1eb1ng c\u00e1ch &#8220;ch\u1ee5p X-quang&#8221; to\u00e0n b\u1ed9 l\u01b0u l\u01b0\u1ee3ng m\u1ea1ng, c\u00f4ng c\u1ee5 n\u00e0y ph\u01a1i b\u00e0y ch\u00ednh x\u00e1c g\u00f3i tin n\u00e0o b\u1ecb drop, IP n\u00e0o \u0111ang spam request v\u00e0 d\u1ecbch v\u1ee5 n\u00e0o ng\u1ed1n b\u0103ng th\u00f4ng. Thay v\u00ec ph\u1ee5 thu\u1ed9c v\u00e0o c\u00e1c n\u1ec1n t\u1ea3ng shared hosting b\u1ecb gi\u1edbi h\u1ea1n quy\u1ec1n can thi\u1ec7p, vi\u1ec7c n\u1eafm trong tay m\u1ed9t m\u00f4i tr\u01b0\u1eddng \u0111\u1ed9c l\u1eadp k\u00e8m k\u1ef9 n\u0103ng \u0111\u1ecdc lu\u1ed3ng d\u1eef li\u1ec7u s\u1ebd gi\u00fap b\u1ea1n l\u00e0m ch\u1ee7 ho\u00e0n to\u00e0n h\u1ec7 th\u1ed1ng. C\u00f9ng <a style=\"background: linear-gradient(90deg, #1E3A8A 0%, #2563EB 100%); -webkit-background-clip: text; -webkit-text-fill-color: transparent; text-decoration: none; font-weight: bold;\" href=\"\/\">InterData<\/a> \u0111i s\u00e2u v\u00e0o c\u00e1ch b\u1eaft v\u00e0 ph\u00e2n t\u00edch g\u00f3i tin t\u1eeb c\u01a1 b\u1ea3n \u0111\u1ebfn th\u1ef1c chi\u1ebfn.<\/span><\/p>\n<div style=\"background-color: #eff6ff; padding: 20px; border: 1.5px solid #BFDBFE; border-radius: 12px; margin-bottom: 40px; box-shadow: 0 8px 20px rgba(37, 99, 235, 0.05);\">\n<p style=\"font-family: 'Be Vietnam Pro', sans-serif; font-weight: bold; font-size: 18px; margin-top: 0; margin-bottom: 15px; color: #1e3a8a;\">N\u1ed8I DUNG B\u00c0I VI\u1ebeT<\/p>\n<ul style=\"list-style-type: none; padding-left: 0; margin: 0;\">\n<li style=\"margin-bottom: 10px;\"><a style=\"text-decoration: none; color: #2563eb; font-weight: 600;\" href=\"#wireshark-la-gi\">1. Wireshark L\u00e0 G\u00ec? B\u1ea3n Ch\u1ea5t C\u1ee7a Tr\u00ecnh Ph\u00e2n T\u00edch M\u1ea1ng<\/a><\/li>\n<li style=\"margin-bottom: 10px;\"><a style=\"text-decoration: none; color: #2563eb; font-weight: 600;\" href=\"#tai-va-cai-dat\">2. H\u01b0\u1edbng D\u1eabn T\u1ea3i Wireshark V\u00e0 C\u00e0i \u0110\u1eb7t Tr\u00ean C\u00e1c N\u1ec1n T\u1ea3ng<\/a><\/li>\n<li style=\"margin-bottom: 10px;\"><a style=\"text-decoration: none; color: #2563eb; font-weight: 600;\" href=\"#giao-dien-co-ban\">3. Giao Di\u1ec7n V\u00e0 C\u00e1ch B\u1eaft G\u00f3i Tin C\u01a1 B\u1ea3n<\/a><\/li>\n<li style=\"margin-bottom: 10px;\"><a style=\"text-decoration: none; color: #2563eb; font-weight: 600;\" href=\"#bo-loc-filter\">4. C\u1ea5u Tr\u00fac L\u1ecdc D\u1eef Li\u1ec7u Wireshark: C\u1eaft B\u1ecf Nhi\u1ec5u M\u1ea1ng<\/a><\/li>\n<li style=\"margin-bottom: 10px;\"><a style=\"text-decoration: none; color: #2563eb; font-weight: 600;\" href=\"#thuc-chien-xu-ly-su-co\">5. Th\u1ef1c Chi\u1ebfn: D\u00f9ng Wireshark G\u1ee1 L\u1ed7i M\u1ea1ng V\u00e0 B\u1ea3o M\u1eadt<\/a><\/li>\n<li style=\"margin-bottom: 10px;\"><a style=\"text-decoration: none; color: #2563eb; font-weight: 600;\" href=\"#ket-hop-tcpdump\">6. Combo Sysadmin: D\u00f9ng tcpdump Tr\u00ean Server, \u0110\u1ecdc B\u1eb1ng Wireshark<\/a><\/li>\n<li style=\"margin-bottom: 10px;\"><a style=\"text-decoration: none; color: #2563eb; font-weight: 600;\" href=\"#faq\">7. C\u00e1c C\u00e2u H\u1ecfi Th\u01b0\u1eddng G\u1eb7p V\u1ec1 Wireshark<\/a><\/li>\n<\/ul>\n<\/div>\n<h2 id=\"wireshark-la-gi\" style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 24px; font-weight: bold; text-align: left; border-left: 5px solid #2563EB; padding-left: 15px; margin-top: 40px; margin-bottom: 20px; line-height: 1.4;\">1. Wireshark L\u00e0 G\u00ec? B\u1ea3n Ch\u1ea5t C\u1ee7a Tr\u00ecnh Ph\u00e2n T\u00edch M\u1ea1ng<\/h2>\n<p style=\"text-align: justify;\">Wireshark l\u00e0 ph\u1ea7n m\u1ec1m ph\u00e2n t\u00edch giao th\u1ee9c m\u1ea1ng (network protocol analyzer) m\u00e3 ngu\u1ed3n m\u1edf, cho ph\u00e9p ng\u01b0\u1eddi d\u00f9ng ch\u1ee5p l\u1ea1i v\u00e0 ki\u1ec3m tra tr\u1ef1c ti\u1ebfp c\u00e1c g\u00f3i tin \u0111ang l\u01b0u th\u00f4ng qua m\u1ed9t card m\u1ea1ng theo th\u1eddi gian th\u1ef1c. Gi\u1edbi k\u1ef9 thu\u1eadt th\u01b0\u1eddng g\u1ecdi c\u00f4ng c\u1ee5 n\u00e0y l\u00e0 packet sniffer.<\/p>\n<p style=\"text-align: justify;\">H\u00e3y t\u01b0\u1edfng t\u01b0\u1ee3ng \u0111\u01b0\u1eddng truy\u1ec1n internet c\u1ee7a b\u1ea1n l\u00e0 m\u1ed9t \u0111\u01b0\u1eddng \u1ed1ng n\u01b0\u1edbc \u0111\u1ee5c. C\u00e1c request, response t\u1eeb tr\u00ecnh duy\u1ec7t hay \u1ee9ng d\u1ee5ng ch\u00ednh l\u00e0 n\u01b0\u1edbc ch\u1ea3y b\u00ean trong. B\u00ecnh th\u01b0\u1eddng, b\u1ea1n ch\u1ec9 bi\u1ebft n\u01b0\u1edbc c\u00f3 ch\u1ea3y t\u1edbi \u0111\u00edch hay kh\u00f4ng. Khi c\u00e0i \u0111\u1eb7t ph\u1ea7n m\u1ec1m n\u00e0y, \u0111\u01b0\u1eddng \u1ed1ng tr\u1edf n\u00ean trong su\u1ed1t. B\u1ea1n nh\u00ecn th\u1ea5u t\u1eebng gi\u1ecdt n\u01b0\u1edbc: ch\u00fang mang d\u1eef li\u1ec7u g\u00ec, \u0111\u1ebfn t\u1eeb IP n\u00e0o, qua port bao nhi\u00eau v\u00e0 t\u1ea1i sao l\u1ea1i b\u1ecb k\u1eb9t.<\/p>\n<p style=\"text-align: justify;\">Ph\u1ea7n m\u1ec1m d\u1ecbch c\u00e1c t\u00edn hi\u1ec7u nh\u1ecb ph\u00e2n th\u00f4 th\u00e0nh \u0111\u1ecbnh d\u1ea1ng con ng\u01b0\u1eddi c\u00f3 th\u1ec3 \u0111\u1ecdc hi\u1ec3u. N\u00f3 \u0111\u1ed1i chi\u1ebfu d\u1eef li\u1ec7u v\u1edbi h\u00e0ng ng\u00e0n giao th\u1ee9c kh\u00e1c nhau (t\u1eeb tcp\/ip wireshark quen thu\u1ed9c \u0111\u1ebfn c\u00e1c giao th\u1ee9c c\u00f4ng nghi\u1ec7p \u0111\u1eb7c th\u00f9). Kh\u1ea3 n\u0103ng b\u00f3c t\u00e1ch l\u1edbp m\u1ea1ng theo m\u00f4 h\u00ecnh OSI gi\u00fap k\u1ef9 s\u01b0 h\u1ec7 th\u1ed1ng x\u00e1c \u0111\u1ecbnh ch\u00ednh x\u00e1c l\u1ed7i n\u1eb1m \u1edf t\u1ea7ng v\u1eadt l\u00fd, t\u1ea7ng m\u1ea1ng hay t\u1ea7ng \u1ee9ng d\u1ee5ng.<\/p>\n<ul style=\"list-style-type: disc; padding-left: 20px; margin-bottom: 25px; color: #1f2937;\">\n<li style=\"margin-bottom: 10px;\"><strong>Debug lu\u1ed3ng d\u1eef li\u1ec7u:<\/strong> L\u1eadp tr\u00ecnh vi\u00ean ki\u1ec3m tra xem API c\u1ee7a m\u00ecnh g\u1eedi header v\u00e0 payload \u0111\u00e3 chu\u1ea9n ch\u01b0a, c\u00f3 b\u1ecb thi\u1ebfu token x\u00e1c th\u1ef1c kh\u00f4ng.<\/li>\n<li style=\"margin-bottom: 10px;\"><strong>Ph\u00e1t hi\u1ec7n ngh\u1ebdn c\u1ed5 chai:<\/strong> Sysadmin t\u00ecm nguy\u00ean nh\u00e2n t\u1ea1i sao k\u1ebft n\u1ed1i database ch\u1eadm. TCP retransmission qu\u00e1 cao th\u01b0\u1eddng b\u00e1o hi\u1ec7u \u0111\u01b0\u1eddng truy\u1ec1n v\u1eadt l\u00fd c\u00f3 v\u1ea5n \u0111\u1ec1 ho\u1eb7c server b\u1ecb qu\u00e1 t\u1ea3i RAM, vCPU.<\/li>\n<li style=\"margin-bottom: 10px;\"><strong>B\u1ea3o m\u1eadt m\u1ea1ng:<\/strong> Chuy\u00ean gia an ninh m\u1ea1ng r\u00e0 qu\u00e9t c\u00e1c d\u1ea5u hi\u1ec7u qu\u00e9t port (port scan), traffic m\u00e3 \u0111\u1ed9c tr\u00edch xu\u1ea5t d\u1eef li\u1ec7u, ho\u1eb7c ph\u00e2n t\u00edch h\u00e0nh vi c\u1ee7a m\u1ed9t \u0111\u1ee3t t\u1ea5n c\u00f4ng t\u1eeb ch\u1ed1i d\u1ecbch v\u1ee5.<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-41870\" src=\"https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/06\/Wireshark.jpg\" alt=\"Wireshark\" width=\"1000\" height=\"667\" title=\"\" srcset=\"https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/06\/Wireshark.jpg 1000w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/06\/Wireshark-300x200.jpg 300w, https:\/\/interdata.vn\/blog\/wp-content\/uploads\/2026\/06\/Wireshark-768x512.jpg 768w\" sizes=\"auto, (max-width: 1000px) 100vw, 1000px\" \/><\/p>\n<h2 id=\"tai-va-cai-dat\" style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 24px; font-weight: bold; text-align: left; border-left: 5px solid #2563EB; padding-left: 15px; margin-top: 40px; margin-bottom: 20px; line-height: 1.4;\">2. H\u01b0\u1edbng D\u1eabn T\u1ea3i Wireshark V\u00e0 C\u00e0i \u0110\u1eb7t Tr\u00ean C\u00e1c N\u1ec1n T\u1ea3ng<\/h2>\n<p style=\"text-align: justify;\">T\u1ea3i wireshark t\u01b0\u01a1ng \u0111\u1ed1i \u0111\u01a1n gi\u1ea3n, nh\u01b0ng ph\u1ea7n l\u00f5i \u0111\u1ec3 b\u1eaft g\u00f3i tin l\u1ea1i ph\u1ee5 thu\u1ed9c v\u00e0o h\u1ec7 \u0111i\u1ec1u h\u00e0nh. D\u01b0\u1edbi \u0111\u00e2y l\u00e0 c\u00e1ch tri\u1ec3n khai tr\u00ean c\u00e1c m\u00f4i tr\u01b0\u1eddng ph\u1ed5 bi\u1ebfn nh\u1ea5t.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 20px; font-weight: 600; margin-top: 25px; margin-bottom: 15px;\">M\u00f4i tr\u01b0\u1eddng Windows v\u00e0 macOS<\/h3>\n<p style=\"text-align: justify;\">Truy c\u1eadp trang ch\u1ee7 ch\u00ednh th\u1ee9c t\u1ea1i <code>wireshark.org<\/code> v\u00e0 ch\u1ecdn b\u1ed9 c\u00e0i t\u01b0\u01a1ng \u1ee9ng. Tr\u00ean Windows, tr\u00ecnh c\u00e0i \u0111\u1eb7t s\u1ebd y\u00eau c\u1ea7u b\u1ea1n c\u00e0i th\u00eam Npcap (phi\u00ean b\u1ea3n m\u1edbi thay th\u1ebf cho WinPcap c\u0169). Npcap ch\u00ednh l\u00e0 driver can thi\u1ec7p v\u00e0o nh\u00e2n h\u1ec7 \u0111i\u1ec1u h\u00e0nh (kernel) \u0111\u1ec3 &#8220;b\u1eaft c\u00f3c&#8221; b\u1ea3n sao c\u1ee7a c\u00e1c g\u00f3i tin tr\u01b0\u1edbc khi ch\u00fang \u0111\u1ebfn tay \u1ee9ng d\u1ee5ng. B\u1ea1n bu\u1ed9c ph\u1ea3i check ch\u1ecdn c\u00e0i \u0111\u1eb7t th\u00e0nh ph\u1ea7n n\u00e0y. Tr\u00ean macOS, \u1ee9ng d\u1ee5ng d\u00f9ng th\u01b0 vi\u1ec7n libpcap c\u00f3 s\u1eb5n, nh\u01b0ng c\u00f3 th\u1ec3 c\u1ea7n c\u1ea5p quy\u1ec1n root ho\u1eb7c c\u00e0i th\u00eam ti\u1ec7n \u00edch d\u00f2ng l\u1ec7nh ChmodBPF \u0111\u1ec3 m\u1edf quy\u1ec1n truy c\u1eadp card m\u1ea1ng cho user th\u00f4ng th\u01b0\u1eddng.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 20px; font-weight: 600; margin-top: 25px; margin-bottom: 15px;\">M\u00f4i tr\u01b0\u1eddng Linux (Desktop \/ M\u00e1y tr\u1ea1m)<\/h3>\n<p style=\"text-align: justify;\">H\u1ea7u h\u1ebft c\u00e1c b\u1ea3n ph\u00e2n ph\u1ed1i Linux \u0111\u1ec1u t\u00edch h\u1ee3p s\u1eb5n g\u00f3i ph\u1ea7n m\u1ec1m n\u00e0y trong repository m\u1eb7c \u0111\u1ecbnh. Kh\u00e1c bi\u1ec7t l\u1edbn nh\u1ea5t n\u1eb1m \u1edf vi\u1ec7c c\u1ea5u h\u00ecnh quy\u1ec1n. Ch\u1ea1y giao di\u1ec7n \u0111\u1ed3 h\u1ecda b\u1eb1ng quy\u1ec1n root l\u00e0 t\u1ed1i k\u1ef5 trong Linux. Thay v\u00e0o \u0111\u00f3, b\u1ea1n th\u00eam user c\u1ee7a m\u00ecnh v\u00e0o nh\u00f3m <code>wireshark<\/code>.<\/p>\n<p style=\"text-align: justify;\">Tr\u00ean Ubuntu\/Debian, ch\u1ea1y l\u1ec7nh:<\/p>\n<div style=\"background-color: #1f2937; color: #f3f4f6; padding: 15px; border-radius: 8px; font-family: monospace; margin-bottom: 15px; overflow-x: auto;\">sudo apt update<br \/>\nsudo apt install wireshark<br \/>\nsudo usermod -aG wireshark $USER<\/div>\n<p style=\"text-align: justify;\">Sau khi g\u00e1n quy\u1ec1n, b\u1ea1n c\u1ea7n \u0111\u0103ng xu\u1ea5t v\u00e0 \u0111\u0103ng nh\u1eadp l\u1ea1i \u0111\u1ec3 c\u1ea5u h\u00ecnh nh\u00f3m c\u00f3 hi\u1ec7u l\u1ef1c. Gi\u1edd \u0111\u00e2y, b\u1ea1n c\u00f3 th\u1ec3 b\u1eaft \u0111\u1ea7u ph\u00e2n t\u00edch m\u1ea1ng m\u00e0 kh\u00f4ng c\u1ea7n g\u00f5 `sudo`.<\/p>\n<div style=\"display: flex; flex-wrap: wrap; background-color: #fff; border: 1.5px solid #BFDBFE; box-shadow: 0 8px 20px rgba(37,99,235,0.08); border-radius: 12px; overflow: hidden; margin: 35px 0;\">\n<div style=\"flex: 1; min-width: 250px; background: linear-gradient(135deg, #1E3A8A 0%, #2563EB 100%); display: flex; align-items: center; justify-content: center; padding: 30px; text-align: center;\">\n<div>\n<p style=\"color: white; font-size: 34px; font-family: 'Be Vietnam Pro', sans-serif; font-weight: bold; margin: 0; line-height: 1.1;\">THU\u00ca VPS<\/p>\n<p style=\"color: #dbeafe; font-size: 15px; font-weight: 600; margin-top: 12px;\">To\u00e0n quy\u1ec1n Root \u00b7 IP Ri\u00eang \u00b7 \u1ed4 c\u1ee9ng SSD NVMe<\/p>\n<\/div>\n<\/div>\n<div style=\"flex: 2; padding: 25px; min-width: 300px;\">\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; margin-top: 0; font-size: 20px;\">L\u00e0m Ch\u1ee7 M\u00f4i Tr\u01b0\u1eddng, T\u1ef1 Do C\u1ea5u H\u00ecnh<\/h3>\n<p style=\"text-align: justify; font-size: 15px; margin-bottom: 15px;\">C\u00e1c g\u00f3i shared hosting gi\u00e1 r\u1ebb kh\u00f4ng bao gi\u1edd c\u1ea5p quy\u1ec1n root, \u0111\u1ed3ng ngh\u0129a v\u1edbi vi\u1ec7c b\u1ea1n m\u00f9 t\u1ecbt v\u1ec1 lu\u1ed3ng m\u1ea1ng th\u1ef1c t\u1ebf. V\u1edbi VPS t\u1ea1i InterData, b\u1ea1n s\u1edf h\u1eefu m\u1ed9t m\u00e1y ch\u1ee7 \u1ea3o \u0111\u1ed9c l\u1eadp ho\u00e0n to\u00e0n. Tho\u1ea3i m\u00e1i c\u00e0i \u0111\u1eb7t tr\u00ecnh ph\u00e2n t\u00edch g\u00f3i tin, t\u00f9y bi\u1ebfn t\u01b0\u1eddng l\u1eeda IPtables, tri\u1ec3n khai Docker hay t\u1ef1 host c\u00e1c \u1ee9ng d\u1ee5ng n\u1ed9i b\u1ed9 m\u00e0 kh\u00f4ng lo \u1ea3nh h\u01b0\u1edfng t\u1eeb &#8220;h\u00e0ng x\u00f3m&#8221; c\u00f9ng server.<\/p>\n<p><a style=\"background: linear-gradient(90deg, #2563EB 0%, #1E3A8A 100%); color: white; padding: 12px 25px; text-decoration: none; font-weight: 600; border-radius: 8px; font-size: 15px; display: inline-block; box-shadow: 0 5px 15px rgba(37,99,235,0.3);\" href=\"https:\/\/interdata.vn\/thue-vps\/\" target=\"_blank\" rel=\"noopener\">XEM B\u1ea2NG GI\u00c1 VPS \u27f6<\/a><\/p>\n<\/div>\n<\/div>\n<h2 id=\"giao-dien-co-ban\" style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 24px; font-weight: bold; text-align: left; border-left: 5px solid #2563EB; padding-left: 15px; margin-top: 40px; margin-bottom: 20px; line-height: 1.4;\">3. Giao Di\u1ec7n V\u00e0 C\u00e1ch B\u1eaft G\u00f3i Tin C\u01a1 B\u1ea3n<\/h2>\n<p style=\"text-align: justify;\">L\u1ea7n \u0111\u1ea7u m\u1edf \u1ee9ng d\u1ee5ng, giao di\u1ec7n d\u00e0y \u0111\u1eb7c th\u00f4ng s\u1ed1 c\u00f3 th\u1ec3 l\u00e0m b\u1ea1n ng\u1ee3p. Nh\u01b0ng c\u1ea5u tr\u00fac th\u1ef1c ra c\u1ef1c k\u1ef3 logic, b\u00e1m s\u00e1t h\u00e0nh vi b\u00f3c t\u00e1ch giao th\u1ee9c.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 20px; font-weight: 600; margin-top: 25px; margin-bottom: 15px;\">Kh\u1edfi \u0111\u1ed9ng ti\u1ebfn tr\u00ecnh b\u1eaft g\u00f3i tin<\/h3>\n<p style=\"text-align: justify;\">Ngay m\u00e0n h\u00ecnh ch\u00ednh, h\u1ec7 th\u1ed1ng li\u1ec7t k\u00ea danh s\u00e1ch c\u00e1c card m\u1ea1ng (Interface) c\u00f3 tr\u00ean m\u00e1y. Card Wi-Fi th\u01b0\u1eddng mang t\u00ean <code>Wi-Fi<\/code> ho\u1eb7c <code>wlan0<\/code>, card d\u00e2y l\u00e0 <code>Ethernet<\/code> ho\u1eb7c <code>eth0<\/code>, v\u00e0 m\u1ed9t card \u1ea3o t\u00ean <code>Loopback (lo0)<\/code> d\u00f9ng \u0111\u1ec3 b\u1eaft d\u1eef li\u1ec7u t\u1eeb m\u00e1y t\u1ef1 g\u1ecdi \u0111\u1ebfn ch\u00ednh n\u00f3 (localhost).<\/p>\n<ol style=\"padding-left: 20px; color: #1f2937; margin-bottom: 20px;\">\n<li style=\"margin-bottom: 10px;\">Quan s\u00e1t bi\u1ec3u \u0111\u1ed3 s\u00f3ng nh\u1ecf b\u00ean c\u1ea1nh t\u00ean m\u1ed7i card. S\u00f3ng nh\u1ea5p nh\u00f4 ch\u1ee9ng t\u1ecf c\u00f3 d\u1eef li\u1ec7u \u0111ang ch\u1ea1y qua.<\/li>\n<li style=\"margin-bottom: 10px;\">Nh\u1ea5n \u0111\u00fap chu\u1ed9t v\u00e0o card m\u1ea1ng b\u1ea1n mu\u1ed1n theo d\u00f5i. Qu\u00e1 tr\u00ecnh thu th\u1eadp l\u1eadp t\u1ee9c b\u1eaft \u0111\u1ea7u. H\u00e0ng ng\u00e0n d\u00f2ng d\u1eef li\u1ec7u s\u1ebd cu\u1ed9n li\u00ean t\u1ee5c tr\u00ean m\u00e0n h\u00ecnh.<\/li>\n<li style=\"margin-bottom: 10px;\">\u0110\u1ec3 d\u1eebng l\u1ea1i, nh\u1ea5n n\u00fat h\u00ecnh \u00f4 vu\u00f4ng m\u00e0u \u0111\u1ecf (Stop) tr\u00ean thanh c\u00f4ng c\u1ee5 g\u00f3c tr\u00ean b\u00ean tr\u00e1i.<\/li>\n<\/ol>\n<p style=\"text-align: justify;\">M\u1ed9t kh\u00e1i ni\u1ec7m c\u1ed1t l\u00f5i c\u1ea7n nh\u1edb l\u00e0 <strong>Promiscuous Mode<\/strong>. M\u1eb7c \u0111\u1ecbnh, card m\u1ea1ng ch\u1ec9 nh\u1eadn nh\u1eefng g\u00f3i tin c\u00f3 \u0111\u1ecba ch\u1ec9 \u0111\u00edch tr\u00f9ng v\u1edbi MAC address c\u1ee7a n\u00f3 v\u00e0 b\u1ecf qua ph\u1ea7n c\u00f2n l\u1ea1i. Khi b\u1eadt Promiscuous mode (th\u01b0\u1eddng \u0111\u01b0\u1ee3c tick s\u1eb5n trong c\u00e0i \u0111\u1eb7t), card m\u1ea1ng \u00e9p b\u1ea3n th\u00e2n thu th\u1eadp to\u00e0n b\u1ed9 lu\u1ed3ng traffic \u0111i qua ph\u00e2n \u0111o\u1ea1n m\u1ea1ng v\u1eadt l\u00fd \u0111\u00f3, b\u1ea5t k\u1ec3 \u0111\u00edch \u0111\u1ebfn l\u00e0 ai. Ch\u1ebf \u0111\u1ed9 n\u00e0y c\u1ef1c k\u1ef3 h\u1eefu \u00edch khi c\u1ea5u h\u00ecnh port mirroring tr\u00ean switch \u0111\u1ec3 monitor to\u00e0n b\u1ed9 m\u1ea1ng n\u1ed9i b\u1ed9.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 20px; font-weight: 600; margin-top: 25px; margin-bottom: 15px;\">\u0110\u1ecdc hi\u1ec3u b\u1ed1 c\u1ee5c ba m\u00e0n h\u00ecnh (Three-Pane View)<\/h3>\n<p style=\"text-align: justify;\">Khi d\u1eef li\u1ec7u \u0111\u00e3 n\u1eb1m tr\u00ean m\u00e0n h\u00ecnh, ph\u1ea7n m\u1ec1m chia c\u1eeda s\u1ed5 l\u00e0m ba khu v\u1ef1c ch\u00ednh. Ch\u00fang l\u00e0m vi\u1ec7c t\u01b0\u01a1ng t\u00e1c v\u1edbi nhau:<\/p>\n<ul style=\"list-style-type: disc; padding-left: 20px; margin-bottom: 25px; color: #1f2937;\">\n<li style=\"margin-bottom: 10px;\"><strong>Packet List (Khung tr\u00ean c\u00f9ng):<\/strong> Li\u1ec7t k\u00ea tu\u1ea7n t\u1ef1 m\u1ecdi g\u00f3i tin b\u1eaft \u0111\u01b0\u1ee3c. C\u1ed9t th\u00f4ng tin bao g\u1ed3m Time (th\u1eddi gian), Source (IP ngu\u1ed3n), Destination (IP \u0111\u00edch), Protocol (giao th\u1ee9c), Length (k\u00edch th\u01b0\u1edbc) v\u00e0 Info (t\u00f3m t\u1eaft n\u1ed9i dung).<\/li>\n<li style=\"margin-bottom: 10px;\"><strong>Packet Details (Khung gi\u1eefa):<\/strong> Click v\u00e0o b\u1ea5t k\u1ef3 d\u00f2ng n\u00e0o \u1edf khung tr\u00ean, khung gi\u1eefa s\u1ebd x\u1ed5 ra th\u00f4ng tin chi ti\u1ebft c\u1ee7a g\u00f3i \u0111\u00f3. Khu v\u1ef1c n\u00e0y ph\u00e2n c\u1ea5p d\u1eef li\u1ec7u ho\u00e0n h\u1ea3o theo m\u00f4 h\u00ecnh OSI: t\u1eeb Frame (t\u1ea7ng 2 &#8211; MAC), IPv4\/IPv6 (t\u1ea7ng 3 &#8211; Network), TCP\/UDP (t\u1ea7ng 4 &#8211; Transport), l\u00ean t\u1edbi HTTP\/DNS (t\u1ea7ng 7 &#8211; Application).<\/li>\n<li style=\"margin-bottom: 10px;\"><strong>Packet Bytes (Khung d\u01b0\u1edbi c\u00f9ng):<\/strong> Hi\u1ec3n th\u1ecb m\u00e3 Hex v\u00e0 ASCII th\u00f4 c\u1ee7a g\u00f3i tin. \u0110\u00e2y l\u00e0 h\u00ecnh h\u00e0i th\u1ef1c s\u1ef1 c\u1ee7a d\u1eef li\u1ec7u \u0111ang ch\u1ea1y tr\u00ean d\u00e2y c\u00e1p.<\/li>\n<\/ul>\n<h2 id=\"bo-loc-filter\" style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 24px; font-weight: bold; text-align: left; border-left: 5px solid #2563EB; padding-left: 15px; margin-top: 40px; margin-bottom: 20px; line-height: 1.4;\">4. C\u1ea5u Tr\u00fac L\u1ecdc D\u1eef Li\u1ec7u Wireshark: C\u1eaft B\u1ecf Nhi\u1ec5u M\u1ea1ng<\/h2>\n<p style=\"text-align: justify;\">\u0110\u1ec3 server ch\u1ea1y m\u1ed9t ti\u1ebfng \u0111\u1ed3ng h\u1ed3, b\u1ea1n c\u00f3 th\u1ec3 thu v\u1ec1 h\u00e0ng tri\u1ec7u g\u00f3i tin n\u1eb7ng t\u1edbi v\u00e0i Gigabyte. T\u00ecm ki\u1ebfm m\u1ed9t l\u1ed7i API trong \u0111\u1ed1ng l\u1ed9n x\u1ed9n n\u00e0y gi\u1ed1ng nh\u01b0 m\u00f2 kim \u0111\u00e1y b\u1ec3. S\u1ee9c m\u1ea1nh th\u1ef1c s\u1ef1 c\u1ee7a c\u00f4ng c\u1ee5 n\u1eb1m \u1edf b\u1ed9 l\u1ecdc d\u1eef li\u1ec7u. C\u00f3 hai c\u01a1 ch\u1ebf l\u1ecdc ho\u00e0n to\u00e0n kh\u00e1c nhau b\u1ea1n ph\u1ea3i ph\u00e2n bi\u1ec7t r\u00f5.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 20px; font-weight: 600; margin-top: 25px; margin-bottom: 15px;\">Capture Filter (L\u1ecdc ngay t\u1eeb c\u1eeda)<\/h3>\n<p style=\"text-align: justify;\">C\u01a1 ch\u1ebf n\u00e0y khai b\u00e1o <em>tr\u01b0\u1edbc<\/em> khi b\u1ea5m n\u00fat b\u1eaft \u0111\u1ea7u. Card m\u1ea1ng ch\u1ec9 gi\u1eef l\u1ea1i nh\u1eefng lu\u1ed3ng kh\u1edbp v\u1edbi \u0111i\u1ec1u ki\u1ec7n, v\u1ee9t b\u1ecf to\u00e0n b\u1ed9 ph\u1ea7n c\u00f2n l\u1ea1i. \u0110i\u1ec1u n\u00e0y ti\u1ebft ki\u1ec7m t\u1ed1i \u0111a RAM v\u00e0 dung l\u01b0\u1ee3ng \u1ed5 c\u1ee9ng. C\u00fa ph\u00e1p Capture Filter s\u1eed d\u1ee5ng chu\u1ea9n BPF (Berkeley Packet Filter), gi\u1ed1ng h\u1ec7t tcpdump.<\/p>\n<ul style=\"list-style-type: none; padding-left: 0; margin-bottom: 20px;\">\n<li style=\"margin-bottom: 10px;\"><code>host 192.168.1.100<\/code> : Ch\u1ec9 b\u1eaft l\u01b0u l\u01b0\u1ee3ng li\u00ean quan \u0111\u1ebfn IP n\u00e0y.<\/li>\n<li style=\"margin-bottom: 10px;\"><code>tcp port 80 or tcp port 443<\/code> : Ch\u1ec9 b\u1eaft traffic web (HTTP\/HTTPS).<\/li>\n<li style=\"margin-bottom: 10px;\"><code>net 10.0.0.0\/24<\/code> : Gi\u1edbi h\u1ea1n trong m\u1ed9t d\u1ea3i m\u1ea1ng c\u1ee5 th\u1ec3.<\/li>\n<\/ul>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 20px; font-weight: 600; margin-top: 25px; margin-bottom: 15px;\">Display Filter (L\u1ecdc tr\u00ean t\u1eadp k\u1ebft qu\u1ea3)<\/h3>\n<p style=\"text-align: justify;\">\u0110\u00e2y l\u00e0 thanh t\u00ecm ki\u1ebfm m\u00e0u xanh l\u00e1 m\u1ea1 n\u1eb1m ngay ph\u00eda tr\u00ean Packet List. N\u00f3 kh\u00f4ng x\u00f3a d\u1eef li\u1ec7u g\u1ed1c, ch\u1ec9 \u1ea9n \u0111i nh\u1eefng d\u00f2ng kh\u00f4ng c\u1ea7n thi\u1ebft tr\u00ean m\u00e0n h\u00ecnh. C\u00fa ph\u00e1p Display Filter c\u1ef1c k\u1ef3 \u0111a d\u1ea1ng v\u00e0 chi ti\u1ebft \u0111\u1ebfn t\u1eebng bit.<\/p>\n<table style=\"width: 100%; border-collapse: collapse; margin-bottom: 25px; box-shadow: 0 4px 6px rgba(0,0,0,0.05);\">\n<thead>\n<tr style=\"background-color: #1e3a8a; color: white;\">\n<th style=\"padding: 12px; border: 1px solid #BFDBFE; text-align: left;\">C\u00fa ph\u00e1p l\u1ecdc (Filter)<\/th>\n<th style=\"padding: 12px; border: 1px solid #BFDBFE; text-align: left;\">\u00dd ngh\u0129a th\u1ef1c ti\u1ec5n<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr style=\"background-color: #f9fafb;\">\n<td style=\"padding: 12px; border: 1px solid #E5E7EB;\"><code>ip.addr == 103.1.2.3<\/code><\/td>\n<td style=\"padding: 12px; border: 1px solid #E5E7EB;\">T\u00ecm m\u1ecdi g\u00f3i tin g\u1eedi \u0111i ho\u1eb7c nh\u1eadn v\u1ec1 t\u1eeb IP n\u00e0y. R\u1ea5t hay d\u00f9ng \u0111\u1ec3 track IP c\u1ee7a m\u1ed9t user \u0111ang b\u00e1o l\u1ed7i.<\/td>\n<\/tr>\n<tr>\n<td style=\"padding: 12px; border: 1px solid #E5E7EB;\"><code>tcp.port == 3306<\/code><\/td>\n<td style=\"padding: 12px; border: 1px solid #E5E7EB;\">L\u1ecdc l\u01b0u l\u01b0\u1ee3ng c\u01a1 s\u1edf d\u1eef li\u1ec7u MySQL\/MariaDB. D\u00f9ng \u0111\u1ec3 xem c\u00e2u query n\u00e0o \u0111ang ph\u1ea3n h\u1ed3i ch\u1eadm.<\/td>\n<\/tr>\n<tr style=\"background-color: #f9fafb;\">\n<td style=\"padding: 12px; border: 1px solid #E5E7EB;\"><code>http.request.method == \"POST\"<\/code><\/td>\n<td style=\"padding: 12px; border: 1px solid #E5E7EB;\">Ch\u1ec9 hi\u1ec3n th\u1ecb c\u00e1c request \u0111\u1ea9y d\u1eef li\u1ec7u l\u00ean server (th\u01b0\u1eddng l\u00e0 submit form, g\u1ecdi API t\u1ea1o m\u1edbi d\u1eef li\u1ec7u).<\/td>\n<\/tr>\n<tr>\n<td style=\"padding: 12px; border: 1px solid #E5E7EB;\"><code>tcp.flags.reset == 1<\/code><\/td>\n<td style=\"padding: 12px; border: 1px solid #E5E7EB;\">L\u1ecdc c\u00e1c g\u00f3i tin RST. Hi\u1ec3n th\u1ecb ngay c\u00e1c k\u1ebft n\u1ed1i b\u1ecb t\u1eeb ch\u1ed1i ph\u0169 ph\u00e0ng ho\u1eb7c ng\u1eaft \u0111\u1ed9t ng\u1ed9t b\u1edfi Firewall\/Nginx.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p style=\"text-align: justify;\">B\u1ea1n c\u00f3 th\u1ec3 n\u1ed1i c\u00e1c \u0111i\u1ec1u ki\u1ec7n b\u1eb1ng to\u00e1n t\u1eed logic: <code>and<\/code> (ho\u1eb7c <code>&amp;&amp;<\/code>), <code>or<\/code> (ho\u1eb7c <code>||<\/code>), v\u00e0 ph\u1ee7 \u0111\u1ecbnh <code>!<\/code>. V\u00ed d\u1ee5: <code>ip.src == 192.168.1.5 and tcp.port == 443<\/code> s\u1ebd l\u1ecdc ch\u00ednh x\u00e1c lu\u1ed3ng truy c\u1eadp HTTPS xu\u1ea5t ph\u00e1t t\u1eeb m\u00e1y c\u00f3 IP \u0111u\u00f4i .5.<\/p>\n<h2 id=\"thuc-chien-xu-ly-su-co\" style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 24px; font-weight: bold; text-align: left; border-left: 5px solid #2563EB; padding-left: 15px; margin-top: 40px; margin-bottom: 20px; line-height: 1.4;\">5. Th\u1ef1c Chi\u1ebfn: D\u00f9ng Wireshark G\u1ee1 L\u1ed7i M\u1ea1ng V\u00e0 B\u1ea3o M\u1eadt<\/h2>\n<p style=\"text-align: justify;\">S\u1edf h\u1eefu c\u00f4ng c\u1ee5 l\u00e0 m\u1ed9t chuy\u1ec7n. Bi\u1ebft \u0111\u1ecdc &#8220;b\u1ec7nh \u00e1n&#8221; l\u1ea1i l\u00e0 c\u00e2u chuy\u1ec7n c\u1ee7a kinh nghi\u1ec7m. D\u01b0\u1edbi \u0111\u00e2y l\u00e0 c\u00e1ch \u00e1nh x\u1ea1 c\u00e1c tri\u1ec7u ch\u1ee9ng th\u1ef1c t\u1ebf v\u00e0o th\u00f4ng s\u1ed1 tr\u00ean m\u00e0n h\u00ecnh.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 20px; font-weight: 600; margin-top: 25px; margin-bottom: 15px;\">K\u1ecbch b\u1ea3n 1: Ph\u00e2n t\u00edch b\u1eaft tay ba b\u01b0\u1edbc (TCP 3-Way Handshake) th\u1ea5t b\u1ea1i<\/h3>\n<p style=\"text-align: justify;\">Khi m\u1ed9t \u1ee9ng d\u1ee5ng b\u00e1o &#8220;Connection Timed Out&#8221;, v\u1ea5n \u0111\u1ec1 th\u01b0\u1eddng n\u1eb1m \u1edf kh\u00e2u thi\u1ebft l\u1eadp k\u1ebft n\u1ed1i ban \u0111\u1ea7u. M\u1ed9t k\u1ebft n\u1ed1i TCP chu\u1ea9n b\u1ecb di\u1ec5n ra theo ba b\u01b0\u1edbc: Client g\u1eedi SYN, Server \u0111\u00e1p l\u1ea1i SYN-ACK, Client x\u00e1c nh\u1eadn b\u1eb1ng ACK. N\u1ebfu b\u1ea1n l\u1ecdc lu\u1ed3ng m\u1ea1ng v\u00e0 ch\u1ec9 th\u1ea5y c\u00e1c g\u00f3i SYN m\u00e0u x\u00e1m bay \u0111i m\u00e0 kh\u00f4ng c\u00f3 SYN-ACK ph\u1ea3n h\u1ed3i, nguy\u00ean nh\u00e2n g\u1ea7n nh\u01b0 ch\u1eafc ch\u1eafn l\u00e0 server \u0111\u00edch \u0111ang s\u1eadp, d\u1ecbch v\u1ee5 ch\u01b0a b\u1eadt l\u00ean \u0111\u1ec3 l\u1eafng nghe port \u0111\u00f3, ho\u1eb7c t\u01b0\u1eddng l\u1eeda ch\u1eb7n g\u1eaft gao \u1edf gi\u1eefa \u0111\u01b0\u1eddng.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 20px; font-weight: 600; margin-top: 25px; margin-bottom: 15px;\">K\u1ecbch b\u1ea3n 2: Ph\u00e1t hi\u1ec7n \u0111\u1ee3t t\u1ea5n c\u00f4ng SYN Flood (DDoS)<\/h3>\n<p style=\"text-align: justify;\">H\u1ec7 th\u1ed1ng b\u1ed7ng d\u01b0ng ngh\u1ebdn c\u1ee5c b\u1ed9. CPU t\u0103ng v\u1ecdt. M\u1edf giao di\u1ec7n l\u00ean v\u00e0 g\u00f5 filter <code>tcp.flags.syn == 1 and tcp.flags.ack == 0<\/code>. N\u1ebfu k\u1ebft qu\u1ea3 tr\u1ea3 v\u1ec1 h\u00e0ng ng\u00e0n d\u00f2ng \u0111\u1ed5 xu\u1ed1ng li\u00ean t\u1ee5c m\u1ed7i gi\u00e2y t\u1eeb v\u00f4 s\u1ed1 IP ng\u1eabu nhi\u00ean t\u1edbi port 80\/443 c\u1ee7a b\u1ea1n, m\u00e1y ch\u1ee7 \u0111ang h\u1ee9ng ch\u1ecbu m\u1ed9t \u0111\u1ee3t SYN Flood. K\u1ebb t\u1ea5n c\u00f4ng g\u1eedi y\u00eau c\u1ea7u m\u1edf k\u1ebft n\u1ed1i nh\u01b0ng c\u1ed1 t\u00ecnh l\u1edd \u0111i b\u01b0\u1edbc ACK cu\u1ed1i c\u00f9ng, khi\u1ebfn server c\u1ea1n ki\u1ec7t t\u00e0i nguy\u00ean ch\u1edd \u0111\u1ee3i. Ghi nh\u1eadn m\u00f4 h\u00ecnh t\u1ea5n c\u00f4ng n\u00e0y gi\u00fap b\u1ea1n thi\u1ebft l\u1eadp rule iptables ho\u1eb7c c\u1ea5u h\u00ecnh h\u1ec7 th\u1ed1ng Anti-DDoS chu\u1ea9n x\u00e1c h\u01a1n.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 20px; font-weight: 600; margin-top: 25px; margin-bottom: 15px;\">K\u1ecbch b\u1ea3n 3: \u0110\u1ed9 tr\u1ec5 ph\u1ea3n h\u1ed3i \u1ee9ng d\u1ee5ng (High Latency)<\/h3>\n<p style=\"text-align: justify;\">Ng\u01b0\u1eddi d\u00f9ng than phi\u1ec1n t\u1ea3i trang ch\u1eadm, nh\u01b0ng ping v\u1eabn ngon l\u00e0nh. V\u1ea5n \u0111\u1ec1 n\u1eb1m \u1edf \u0111\u00e2u? H\u00e3y b\u1eadt c\u1ed9t t\u00ednh th\u1eddi gian Delta Time (th\u1eddi gian t\u00ednh t\u1eeb g\u00f3i tin tr\u01b0\u1edbc \u0111\u00f3). Theo d\u00f5i lu\u1ed3ng TCP, n\u1ebfu b\u1ea1n th\u1ea5y t\u1eeb l\u00fac client g\u1eedi request HTTP \u0111\u1ebfn l\u00fac server \u0111\u1ea9y byte d\u1eef li\u1ec7u \u0111\u1ea7u ti\u00ean v\u1ec1 m\u1ea5t t\u1eadn 2-3 gi\u00e2y (hi\u1ec3n th\u1ecb r\u00f5 \u1edf m\u1ee5c Time delta), \u0111\u1ed9 tr\u1ec5 do server x\u1eed l\u00fd code (backend\/database) ch\u1ee9 kh\u00f4ng ph\u1ea3i do h\u1ea1 t\u1ea7ng m\u1ea1ng v\u1eadt l\u00fd.<\/p>\n<h2 id=\"ket-hop-tcpdump\" style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 24px; font-weight: bold; text-align: left; border-left: 5px solid #2563EB; padding-left: 15px; margin-top: 40px; margin-bottom: 20px; line-height: 1.4;\">6. Combo Sysadmin: D\u00f9ng tcpdump Tr\u00ean Server, \u0110\u1ecdc B\u1eb1ng Wireshark<\/h2>\n<p style=\"text-align: justify;\">Tri\u1ec3n khai giao di\u1ec7n \u0111\u1ed3 h\u1ecda tr\u1ef1c ti\u1ebfp tr\u00ean Linux server l\u00e0 m\u1ed9t h\u00e0nh \u0111\u1ed9ng l\u00e3ng ph\u00ed t\u00e0i nguy\u00ean v\u00e0 ti\u1ec1m \u1ea9n r\u1ee7i ro b\u1ea3o m\u1eadt. C\u00e1c k\u1ef9 s\u01b0 DevOps gi\u00e0u kinh nghi\u1ec7m kh\u00f4ng l\u00e0m v\u1eady. H\u1ecd t\u1eadn d\u1ee5ng s\u1ee9c m\u1ea1nh d\u00f2ng l\u1ec7nh c\u1ee7a <code>tcpdump<\/code> \u0111\u1ec3 thu th\u1eadp, sau \u0111\u00f3 \u0111\u1ea9y file v\u1ec1 m\u00e1y c\u00e1 nh\u00e2n ph\u00e2n t\u00edch.<\/p>\n<ol style=\"padding-left: 20px; color: #1f2937; margin-bottom: 20px;\">\n<li style=\"margin-bottom: 10px;\">SSH v\u00e0o server \u0111ang g\u1eb7p s\u1ef1 c\u1ed1.<\/li>\n<li style=\"margin-bottom: 10px;\">Ch\u1ea1y l\u1ec7nh capture g\u00f3i tin v\u00e0 ghi ra file \u0111\u1ecbnh d\u1ea1ng PCAP. V\u00ed d\u1ee5, b\u1eaft lu\u1ed3ng web trong 1 ph\u00fat:<br \/>\n<code>sudo tcpdump -i eth0 port 80 or port 443 -w \/tmp\/traffic_capture.pcap<\/code><\/li>\n<li style=\"margin-bottom: 10px;\">B\u1ea5m Ctrl+C \u0111\u1ec3 ng\u01b0ng ti\u1ebfn tr\u00ecnh khi \u0111\u1ee7 d\u1eef li\u1ec7u.<\/li>\n<li style=\"margin-bottom: 10px;\">D\u00f9ng SCP ho\u1eb7c SFTP \u0111\u1ec3 k\u00e9o file <code>traffic_capture.pcap<\/code> v\u1ec1 m\u00e1y t\u00ednh c\u00e1 nh\u00e2n.<\/li>\n<li style=\"margin-bottom: 10px;\">M\u1edf \u1ee9ng d\u1ee5ng tr\u00ean m\u00e1y t\u00ednh c\u1ee7a b\u1ea1n, ch\u1ecdn File -&gt; Open v\u00e0 tr\u1ecf t\u1edbi t\u1ec7p PCAP v\u1eeba t\u1ea3i. To\u00e0n b\u1ed9 giao di\u1ec7n tr\u1ef1c quan, t\u00ednh n\u0103ng b\u00f3c t\u00e1ch t\u1ea7ng giao th\u1ee9c l\u1eadp t\u1ee9c hi\u1ec7n ra h\u1ec7t nh\u01b0 b\u1ea1n \u0111ang c\u1eafm c\u00e1p tr\u1ef1c ti\u1ebfp v\u00e0o server.<\/li>\n<\/ol>\n<p style=\"text-align: justify;\">Ph\u01b0\u01a1ng ph\u00e1p n\u00e0y \u0111\u1eb7c bi\u1ec7t h\u1eefu d\u1ee5ng khi l\u00e0m vi\u1ec7c v\u1edbi c\u00e1c h\u1ec7 th\u1ed1ng container. C\u1eafm tcpdump v\u00e0o card m\u1ea1ng \u1ea3o <code>docker0<\/code>, ghi file ra, b\u1ea1n s\u1ebd gi\u1ea3i m\u00e3 \u0111\u01b0\u1ee3c ngay t\u1ea1i sao hai container backend v\u00e0 database l\u1ea1i kh\u00f4ng n\u00f3i chuy\u1ec7n \u0111\u01b0\u1ee3c v\u1edbi nhau.<\/p>\n<div style=\"display: flex; flex-wrap: wrap; background-color: #fff; border: 1.5px solid #BFDBFE; box-shadow: 0 8px 20px rgba(37,99,235,0.08); border-radius: 12px; overflow: hidden; margin: 35px 0;\">\n<div style=\"flex: 1; min-width: 250px; background: linear-gradient(135deg, #1E3A8A 0%, #2563EB 100%); display: flex; align-items: center; justify-content: center; padding: 30px; text-align: center;\">\n<div>\n<p style=\"color: white; font-size: 34px; font-family: 'Be Vietnam Pro', sans-serif; font-weight: bold; margin: 0; line-height: 1.1;\">THU\u00ca CLOUD SERVER<\/p>\n<p style=\"color: #dbeafe; font-size: 15px; font-weight: 600; margin-top: 12px;\">M\u1edf r\u1ed9ng linh ho\u1ea1t \u00b7 H\u1ea1 t\u1ea7ng m\u1ea1nh m\u1ebd \u00b7 Ch\u1ed1ng DDoS hi\u1ec7u qu\u1ea3<\/p>\n<\/div>\n<\/div>\n<div style=\"flex: 2; padding: 25px; min-width: 300px;\">\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; margin-top: 0; font-size: 20px;\">S\u1eb5n S\u00e0ng Cho C\u00e1c H\u1ec7 Th\u1ed1ng L\u1edbn<\/h3>\n<p style=\"text-align: justify; font-size: 15px; margin-bottom: 15px;\">N\u1ebfu k\u1ebft qu\u1ea3 ph\u00e2n t\u00edch m\u1ea1ng cho th\u1ea5y h\u1ec7 th\u1ed1ng c\u1ee7a b\u1ea1n \u0111ang ngh\u1ebdn c\u1ed5 chai kh\u00f4ng ph\u1ea3i do l\u1ed7i code, m\u00e0 do kh\u1ed1i l\u01b0\u1ee3ng traffic t\u0103ng v\u1ecdt \u0111\u1ed9t bi\u1ebfn v\u01b0\u1ee3t ng\u01b0\u1ee1ng ch\u1ecbu t\u1ea3i c\u1ee7a server v\u1eadt l\u00fd truy\u1ec1n th\u1ed1ng, \u0111\u00e3 \u0111\u1ebfn l\u00fac t\u00ednh \u0111\u01b0\u1eddng n\u00e2ng c\u1ea5p. Cloud Server t\u1ea1i InterData cho ph\u00e9p m\u1edf r\u1ed9ng t\u00e0i nguy\u00ean vCPU, RAM t\u1ee9c th\u1eddi \u0111\u1ec3 h\u1ee9ng l\u01b0u l\u01b0\u1ee3ng l\u1edbn, \u0111\u00e1p \u1ee9ng m\u01b0\u1ee3t m\u00e0 c\u00e1c chi\u1ebfn d\u1ecbch marketing hay s\u00e0n TM\u0110T m\u00f9a cao \u0111i\u1ec3m.<\/p>\n<p><a style=\"background: linear-gradient(90deg, #2563EB 0%, #1E3A8A 100%); color: white; padding: 12px 25px; text-decoration: none; font-weight: 600; border-radius: 8px; font-size: 15px; display: inline-block; box-shadow: 0 5px 15px rgba(37,99,235,0.3);\" href=\"https:\/\/interdata.vn\/cloud-server\/\" target=\"_blank\" rel=\"noopener\">KH\u00c1M PH\u00c1 CLOUD SERVER \u27f6<\/a><\/p>\n<\/div>\n<\/div>\n<h2 id=\"faq\" style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 24px; font-weight: bold; text-align: left; border-left: 5px solid #2563EB; padding-left: 15px; margin-top: 40px; margin-bottom: 20px; line-height: 1.4;\">7. C\u00e1c C\u00e2u H\u1ecfi Th\u01b0\u1eddng G\u1eb7p V\u1ec1 Wireshark<\/h2>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 18px; font-weight: 600; margin-top: 20px; margin-bottom: 10px;\">Wireshark c\u00f3 ph\u1ea3i l\u00e0 c\u00f4ng c\u1ee5 hack m\u1ea1ng kh\u00f4ng?<\/h3>\n<p style=\"text-align: justify; margin-bottom: 15px;\">B\u1ea3n ch\u1ea5t n\u00f3 l\u00e0 c\u00f4ng c\u1ee5 ch\u1ea9n \u0111o\u00e1n th\u1ee5 \u0111\u1ed9ng (passive listener). N\u00f3 kh\u00f4ng g\u1eedi \u0111i m\u00e3 \u0111\u1ed9c, kh\u00f4ng ph\u00e1 m\u1eadt kh\u1ea9u hay can thi\u1ec7p v\u00e0o m\u00e1y n\u1ea1n nh\u00e2n. Tuy nhi\u00ean, n\u1ebfu m\u1ed9t hacker \u0111\u1ee9ng chung m\u1ea1ng LAN v\u00e0 b\u1eaft \u0111\u01b0\u1ee3c c\u00e1c lu\u1ed3ng d\u1eef li\u1ec7u kh\u00f4ng m\u00e3 h\u00f3a (HTTP, Telnet), h\u1ecd c\u00f3 th\u1ec3 \u0111\u1ecdc \u0111\u01b0\u1ee3c n\u1ed9i dung nh\u1ea1y c\u1ea3m. C\u00f4ng c\u1ee5 t\u1ed1t hay x\u1ea5u do m\u1ee5c \u0111\u00edch ng\u01b0\u1eddi d\u00f9ng.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 18px; font-weight: 600; margin-top: 20px; margin-bottom: 10px;\">Ph\u1ea7n m\u1ec1m c\u00f3 b\u1eaft \u0111\u01b0\u1ee3c n\u1ed9i dung b\u1ea3o m\u1eadt HTTPS kh\u00f4ng?<\/h3>\n<p style=\"text-align: justify; margin-bottom: 15px;\">M\u1eb7c \u0111\u1ecbnh, b\u1ea1n v\u1eabn b\u1eaft \u0111\u01b0\u1ee3c g\u00f3i tin HTTPS nh\u01b0ng n\u1ed9i dung b\u00ean trong l\u00e0 c\u00e1c chu\u1ed7i k\u00fd t\u1ef1 \u0111\u00e3 m\u00e3 h\u00f3a l\u1ed9n x\u1ed9n (TLS payload). Mu\u1ed1n \u0111\u1ecdc \u0111\u01b0\u1ee3c n\u1ed9i dung d\u1ea1ng plaintext, b\u1ea1n ph\u1ea3i c\u1ea5p cho ph\u1ea7n m\u1ec1m c\u00e1c kh\u00f3a phi\u00ean (session keys) sinh ra t\u1eeb tr\u00ecnh duy\u1ec7t ho\u1eb7c server \u0111\u00edch \u0111\u1ec3 ti\u1ebfn h\u00e0nh gi\u1ea3i m\u00e3 (Decrypt TLS).<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 18px; font-weight: 600; margin-top: 20px; margin-bottom: 10px;\">Ch\u1ea1y \u1ee9ng d\u1ee5ng n\u00e0y c\u00f3 l\u00e0m ch\u1eadm m\u00e1y t\u00ednh ho\u1eb7c server kh\u00f4ng?<\/h3>\n<p style=\"text-align: justify; margin-bottom: 15px;\">Vi\u1ec7c capture lu\u1ed3ng d\u1eef li\u1ec7u tr\u00ean m\u1ea1ng gigabit s\u1ebd ng\u1ed1n kh\u00e1 nhi\u1ec1u RAM v\u00e0 CPU \u0111\u1ec3 l\u01b0u tr\u1eef, hi\u1ec3n th\u1ecb tr\u1ef1c quan. Do \u0111\u00f3, k\u1ef9 s\u01b0 lu\u00f4n s\u1eed d\u1ee5ng Capture Filters \u0111\u1ec3 gi\u1edbi h\u1ea1n ngay t\u1eeb \u0111\u1ea7u nh\u1eefng g\u00ec c\u1ea7n thu th\u1eadp. Giao di\u1ec7n \u0111\u1ed3 h\u1ecda c\u0169ng kh\u00f4ng n\u00ean c\u1eafm ch\u1ea1y li\u00ean t\u1ee5c ng\u00e0y qua ng\u00e0y tr\u00ean server \u0111ang \u0111\u1ea9y t\u1ea3i cao.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 18px; font-weight: 600; margin-top: 20px; margin-bottom: 10px;\">Tshark l\u00e0 g\u00ec v\u00e0 kh\u00e1c g\u00ec so v\u1edbi b\u1ea3n g\u1ed1c?<\/h3>\n<p style=\"text-align: justify; margin-bottom: 15px;\">Tshark ch\u00ednh l\u00e0 phi\u00ean b\u1ea3n ch\u1ea1y ho\u00e0n to\u00e0n b\u1eb1ng giao di\u1ec7n d\u00f2ng l\u1ec7nh (CLI) c\u1ee7a b\u1ed9 c\u00f4ng c\u1ee5. N\u00f3 k\u1ebf th\u1eeba \u0111\u1ea7y \u0111\u1ee7 s\u1ee9c m\u1ea1nh b\u00f3c t\u00e1ch giao th\u1ee9c v\u00e0 b\u1ed9 l\u1ecdc nh\u01b0ng kh\u00f4ng c\u1ea7n m\u00f4i tr\u01b0\u1eddng desktop. Th\u00edch h\u1ee3p \u0111\u1ec3 nh\u00fang v\u00e0o c\u00e1c script bash t\u1ef1 \u0111\u1ed9ng tr\u00ean Linux server.<\/p>\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 18px; font-weight: 600; margin-top: 20px; margin-bottom: 10px;\">L\u00e0m sao \u0111\u1ec3 bi\u1ebft g\u00f3i tin n\u00e0o l\u00e0 c\u1ee7a ri\u00eang m\u00e1y t\u00f4i?<\/h3>\n<p style=\"text-align: justify; margin-bottom: 15px;\">Tr\u1eeb khi b\u1ea1n b\u1eadt Promiscuous mode tr\u00ean card m\u1ea1ng v\u00e0 c\u1ea5u h\u00ecnh switch \u0111\u1ea9y to\u00e0n b\u1ed9 traffic v\u1ec1 c\u1ed5ng c\u1ee7a b\u1ea1n (port mirroring), m\u1eb7c \u0111\u1ecbnh card m\u1ea1ng tr\u00ean laptop\/PC c\u00e1 nh\u00e2n ch\u1ec9 b\u1eaft \u0111\u01b0\u1ee3c c\u00e1c g\u00f3i tin xu\u1ea5t ph\u00e1t t\u1eeb thi\u1ebft b\u1ecb c\u1ee7a b\u1ea1n ho\u1eb7c c\u00f3 \u0111\u00edch \u0111\u1ebfn g\u1eedi v\u1ec1 thi\u1ebft b\u1ecb c\u1ee7a b\u1ea1n.<\/p>\n<div style=\"border-top: 2px dashed #BFDBFE; margin-top: 50px; padding-top: 30px;\">\n<h3 style=\"font-family: 'Be Vietnam Pro', sans-serif; color: #1e3a8a; font-size: 22px; font-weight: bold; margin-bottom: 15px;\">L\u00e0m Ch\u1ee7 H\u1ec7 Th\u1ed1ng T\u1eeb Nh\u1eefng G\u00f3i Tin Nh\u1ecf Nh\u1ea5t<\/h3>\n<p style=\"text-align: justify;\">G\u1ee1 l\u1ed7i m\u1ea1ng kh\u00f4ng ph\u1ea3i l\u00e0 ngh\u1ec7 thu\u1eadt h\u1eafc \u00e1m. N\u00f3 l\u00e0 s\u1ef1 k\u1ebft h\u1ee3p gi\u1eefa ki\u1ebfn th\u1ee9c chu\u1ea9n v\u1ec1 TCP\/IP v\u00e0 m\u1ed9t &#8220;chi\u1ebfc k\u00ednh l\u00fap&#8221; soi chi\u1ebfu d\u1eef li\u1ec7u th\u00f4. N\u1eafm b\u1eaft c\u00e1ch l\u1ecdc \u0111\u00fang <strong>wireshark<\/strong> filter, b\u1ea1n c\u1eaft gi\u1ea3m \u0111\u01b0\u1ee3c h\u00e0ng gi\u1edd m\u00f2 m\u1eabm v\u00f4 \u0111\u1ecbnh trong file log. Tuy nhi\u00ean, ki\u1ebfn th\u1ee9c n\u00e0y ch\u1ec9 ph\u00e1t huy s\u1ee9c m\u1ea1nh t\u1ed1i \u0111a khi b\u1ea1n c\u00f3 kh\u00f4ng gian th\u1ef1c h\u00e0nh kh\u00f4ng b\u1ecb gi\u1edbi h\u1ea1n.<\/p>\n<div style=\"background: #EFF6FF; border: 1px solid #2563EB; padding: 30px; margin-top: 25px; border-radius: 12px; text-align: center;\">\n<p style=\"font-family: 'Be Vietnam Pro', sans-serif; font-size: 20px; font-weight: bold; color: #1e3a8a; margin-top: 0;\">S\u1eb5n S\u00e0ng Tri\u1ec3n Khai Lab Ph\u00e2n T\u00edch M\u1ea1ng Cho Ri\u00eang B\u1ea1n?<\/p>\n<p style=\"font-size: 15px; margin-bottom: 20px; color: #4b5563;\">S\u1edf h\u1eefu ngay m\u00f4i tr\u01b0\u1eddng m\u00e1y ch\u1ee7 \u1ea3o ri\u00eang bi\u1ec7t v\u1edbi to\u00e0n quy\u1ec1n qu\u1ea3n tr\u1ecb s\u00e2u nh\u1ea5t.<\/p>\n<p><a style=\"background: #2563EB; color: #ffffff; padding: 12px 30px; text-decoration: none; font-weight: 600; border-radius: 6px; display: inline-block;\" href=\"https:\/\/interdata.vn\/thue-vps\/\" target=\"_blank\" rel=\"noopener\">KH\u1edeI T\u1ea0O VPS NGAY \u27f6<\/a><\/p>\n<\/div>\n<\/div>\n<p style=\"text-align: justify; font-size: 13px; font-style: italic; color: #6b7280; margin-top: 30px; border-top: 1px solid #E5E7EB; padding-top: 15px;\"><span style=\"font-size: 100%;\"><em>C\u1ea3nh b\u00e1o k\u1ef9 thu\u1eadt: C\u00e1c ph\u01b0\u01a1ng ph\u00e1p ph\u00e2n t\u00edch v\u00e0 b\u1ed9 l\u1ecdc m\u1ea1ng tr\u00ean ch\u1ec9 mang t\u00ednh tham kh\u1ea3o. Giao di\u1ec7n hi\u1ec3n th\u1ecb, c\u00fa ph\u00e1p l\u1ec7nh ho\u1eb7c c\u00e1ch thi\u1ebft l\u1eadp quy\u1ec1n c\u00f3 th\u1ec3 x\u00ea d\u1ecbch t\u00f9y thu\u1ed9c v\u00e0o b\u1ea3n ph\u00e2n ph\u1ed1i Linux, phi\u00ean b\u1ea3n Windows ho\u1eb7c b\u1ea3n c\u1eadp nh\u1eadt ph\u1ea7n m\u1ec1m hi\u1ec7n t\u1ea1i. Ch\u1ee7 \u0111\u1ed9ng t\u1ea1o snapshot h\u1ec7 th\u1ed1ng v\u00e0 ch\u1ea1y th\u1eed tr\u00ean m\u00f4i tr\u01b0\u1eddng staging tr\u01b0\u1edbc khi c\u1eafm l\u1ec7nh theo d\u00f5i v\u00e0o h\u1ea1 t\u1ea7ng \u0111ang cung c\u1ea5p d\u1ecbch v\u1ee5 th\u1ef1c t\u1ebf.<\/em><\/span><\/p>\n\n\n<style>\n.interdata-plan-carousel{--blue:#005bea;--blue-dark:#004dcc;--text:#071832;--border:#d8e6fb;--bg:#f3f8ff;container-type:inline-size;background:var(--bg);padding:14px 12px;overflow:hidden}\n.interdata-carousel-heading{color:#003fbd;font-size:18px;line-height:1.35;font-weight:800;text-align:center;margin:0 0 14px}\n.interdata-plan-track{display:flex;gap:12px;overflow-x:auto;scroll-snap-type:x mandatory;padding:0 0 8px;-webkit-overflow-scrolling:touch;scrollbar-width:none}\n.interdata-plan-track::-webkit-scrollbar{display:none}\n.interdata-plan-card,.interdata-plan-card *{box-sizing:border-box}\n.interdata-plan-card{flex:0 0 calc(25% - 9px);min-width:205px;background:#fff;border:1px solid var(--border);border-radius:8px;padding:18px 14px 14px;min-height:382px;display:flex;flex-direction:column;scroll-snap-align:start;box-shadow:0 5px 14px rgba(0,62,145,.08)}\n.interdata-plan-title{color:var(--blue-dark);font-size:17px;line-height:1.25;font-weight:800;text-align:center;margin:0 0 8px}\n.interdata-plan-price{color:var(--blue-dark);font-size:32px;line-height:1;font-weight:900;text-align:center;margin-bottom:14px;white-space:nowrap;letter-spacing:0}\n.interdata-plan-price span{font-size:12px;font-weight:800;margin-left:2px}\n.interdata-plan-badge{align-self:center;display:inline-flex;align-items:center;justify-content:center;background:#ff3934;color:#fff;border-radius:5px;padding:8px 10px;font-size:10px;line-height:1;font-weight:800;margin-bottom:18px;white-space:nowrap}\n.interdata-plan-features{list-style:none!important;padding:0!important;margin:0!important}\n.interdata-plan-features li{display:flex;gap:8px;align-items:flex-start;color:var(--text);font-size:13px;line-height:1.35;font-weight:700;text-align:left;margin:0 0 11px!important;padding:0!important}\n.interdata-plan-icon{width:15px;min-width:15px;height:15px;color:#0069ff;margin-top:2px}\n.interdata-plan-icon svg{display:block;width:100%;height:100%;fill:none;stroke:currentColor;stroke-width:2;stroke-linecap:round;stroke-linejoin:round}\n.interdata-plan-spacer{flex:1}\n.interdata-plan-button{display:flex;align-items:center;justify-content:center;min-height:44px;width:100%;background:var(--blue);color:#fff!important;border-radius:5px;font-size:14px;font-weight:800;text-decoration:none!important;box-shadow:0 7px 14px rgba(0,91,234,.24);transition:transform .2s ease,background .2s ease}\n.interdata-plan-button:hover{background:var(--blue-dark);color:#fff!important;transform:translateY(-1px)}\n@container (max-width:860px){.interdata-plan-card{flex-basis:calc(33.333% - 8px);min-width:205px}}\n@container (max-width:640px){.interdata-plan-card{flex-basis:calc(50% - 7px);min-width:215px}}\n@container (max-width:480px){.interdata-plan-carousel{padding:12px 10px}.interdata-carousel-heading{font-size:16px}.interdata-plan-card{flex-basis:86%;min-width:235px}.interdata-plan-price{font-size:31px}}\n@media (max-width:360px){.interdata-plan-card{flex-basis:90%;min-width:220px}.interdata-plan-price{font-size:29px}.interdata-plan-badge{font-size:9px}}\n<\/style>\n\n<div class=\"interdata-plan-carousel\">\n  <div class=\"interdata-carousel-heading\"><span style=\"font-family: Roboto, sans-serif; color: red;\">Si\u00eau \u01afu \u0110\u00e3i VPS \/ CLOUD SERVER - Ti\u1ebft Ki\u1ec7m \u0110\u1ebfn 70%<\/span><\/div>\n\n  <svg width=\"0\" height=\"0\" style=\"position:absolute;visibility:hidden\" aria-hidden=\"true\">\n    <symbol id=\"id-icon-cpu\" viewBox=\"0 0 24 24\"><rect x=\"7\" y=\"7\" width=\"10\" height=\"10\" rx=\"2\"><\/rect><path d=\"M4 9h3M4 15h3M17 9h3M17 15h3M9 4v3M15 4v3M9 17v3M15 17v3\"><\/path><path d=\"M10 10h4v4h-4z\"><\/path><\/symbol>\n    <symbol id=\"id-icon-ram\" viewBox=\"0 0 24 24\"><rect x=\"4\" y=\"8\" width=\"16\" height=\"8\" rx=\"2\"><\/rect><path d=\"M7 16v2M11 16v2M15 16v2M19 16v2M7 11h1M11 11h1M15 11h1\"><\/path><\/symbol>\n    <symbol id=\"id-icon-storage\" viewBox=\"0 0 24 24\"><rect x=\"6\" y=\"3\" width=\"12\" height=\"18\" rx=\"2\"><\/rect><path d=\"M9 7h6\"><\/path><circle cx=\"12\" cy=\"16\" r=\"1.5\"><\/circle><\/symbol>\n    <symbol id=\"id-icon-network\" viewBox=\"0 0 24 24\"><path d=\"M5 12.5a10 10 0 0 1 14 0\"><\/path><path d=\"M8.5 16a5 5 0 0 1 7 0\"><\/path><path d=\"M12 19h.01\"><\/path><\/symbol>\n    <symbol id=\"id-icon-gift\" viewBox=\"0 0 24 24\"><rect x=\"3\" y=\"8\" width=\"18\" height=\"13\" rx=\"2\"><\/rect><path d=\"M12 8v13M3 12h18\"><\/path><path d=\"M7.5 8C6.1 8 5 6.9 5 5.5S6.1 3 7.5 3C10 3 12 8 12 8\"><\/path><path d=\"M16.5 8C17.9 8 19 6.9 19 5.5S17.9 3 16.5 3C14 3 12 8 12 8\"><\/path><\/symbol>\n  <\/svg>\n\n  <div class=\"interdata-plan-track\">\n    <article class=\"interdata-plan-card\">\n      <h3 class=\"interdata-plan-title\">Premium Base<\/h3>\n      <div class=\"interdata-plan-price\">299K<span>\/3 Th\u00e1ng<\/span><\/div>\n      <div class=\"interdata-plan-badge\">GIA H\u1ea0N KH\u00d4NG \u0110\u1ed4I GI\u00c1<\/div>\n      <ul class=\"interdata-plan-features\">\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-cpu\"><\/use><\/svg><\/span>2 vCore Intel Xeon Scalable<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-ram\"><\/use><\/svg><\/span>2 GB RAM<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-storage\"><\/use><\/svg><\/span>30 GB NVMe U.2<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-network\"><\/use><\/svg><\/span>Network: 300 Mbps<\/li>\n      <\/ul>\n      <div class=\"interdata-plan-spacer\"><\/div>\n      <a class=\"interdata-plan-button\" href=\"https:\/\/support.interdata.vn\/index.php?rp=\/store\/best-value-plans-2026\/best-value-plans-premium-base\" target=\"_blank\" rel=\"nofollow sponsored noopener\">\u0110\u0103ng k\u00fd ngay<\/a>\n    <\/article>\n\n    <article class=\"interdata-plan-card\">\n      <h3 class=\"interdata-plan-title\">Premium Base<\/h3>\n      <div class=\"interdata-plan-price\">999K<span>\/n\u0103m<\/span><\/div>\n      <div class=\"interdata-plan-badge\">GIA H\u1ea0N KH\u00d4NG \u0110\u1ed4I GI\u00c1<\/div>\n      <ul class=\"interdata-plan-features\">\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-cpu\"><\/use><\/svg><\/span>3 vCore Intel Xeon<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-ram\"><\/use><\/svg><\/span>3 GB RAM<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-storage\"><\/use><\/svg><\/span>30 GB SSD NVMe U.2<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-network\"><\/use><\/svg><\/span>Network: 300 Mbps<\/li>\n      <\/ul>\n      <div class=\"interdata-plan-spacer\"><\/div>\n      <a class=\"interdata-plan-button\" href=\"https:\/\/support.interdata.vn\/index.php?rp=\/store\/cyber-week-2026\/premium-base\" target=\"_blank\" rel=\"nofollow sponsored noopener\">\u0110\u0103ng k\u00fd ngay<\/a>\n    <\/article>\n\n    <article class=\"interdata-plan-card\">\n      <h3 class=\"interdata-plan-title\">Premium Pro<\/h3>\n      <div class=\"interdata-plan-price\">2.599K<span>\/n\u0103m<\/span><\/div>\n      <div class=\"interdata-plan-badge\">GIA H\u1ea0N KH\u00d4NG \u0110\u1ed4I GI\u00c1<\/div>\n      <ul class=\"interdata-plan-features\">\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-cpu\"><\/use><\/svg><\/span>6 vCore Intel Xeon Scalable<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-ram\"><\/use><\/svg><\/span>8 GB RAM<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-storage\"><\/use><\/svg><\/span>80 GB SSD NVMe U.2<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-network\"><\/use><\/svg><\/span>Network: 350 Mbps<\/li>\n      <\/ul>\n      <div class=\"interdata-plan-spacer\"><\/div>\n      <a class=\"interdata-plan-button\" href=\"https:\/\/support.interdata.vn\/index.php?rp=\/store\/cyber-week-2026\/premium-pro\" target=\"_blank\" rel=\"nofollow sponsored noopener\">\u0110\u0103ng k\u00fd ngay<\/a>\n    <\/article>\n\n    <article class=\"interdata-plan-card\">\n      <h3 class=\"interdata-plan-title\">Cloud-Day - Base<\/h3>\n      <div class=\"interdata-plan-price\">2.666K<span>\/n\u0103m<\/span><\/div>\n      <div class=\"interdata-plan-badge\">GIA H\u1ea0N KH\u00d4NG \u0110\u1ed4I GI\u00c1<\/div>\n      <ul class=\"interdata-plan-features\">\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-gift\"><\/use><\/svg><\/span>T\u1eb7ng 80 GB S3 v\u00e0 1 N\u0102M S\u1eec D\u1ee4NG khi mua 2 n\u0103m tr\u1edf l\u00ean<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-cpu\"><\/use><\/svg><\/span>4 vCPU AMD EPYC<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-ram\"><\/use><\/svg><\/span>6 GB RAM<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-storage\"><\/use><\/svg><\/span>60 GB SSD NVMe U.2<\/li>\n        <li><span class=\"interdata-plan-icon\"><svg><use href=\"#id-icon-network\"><\/use><\/svg><\/span>Network: 10 Gbps<\/li>\n      <\/ul>\n      <div class=\"interdata-plan-spacer\"><\/div>\n      <a class=\"interdata-plan-button\" href=\"https:\/\/support.interdata.vn\/index.php?rp=\/store\/cloud-day-by-interdata-2026\/cloud-day-base\" target=\"_blank\" rel=\"nofollow sponsored noopener\">\u0110\u0103ng k\u00fd ngay<\/a>\n    <\/article>\n  <\/div>\n<\/div>\n\n\t<div id=\"gap-328028622\" class=\"gap-element clearfix\" style=\"display:block; height:auto;\">\n\t\t\n<style>\n#gap-328028622 {\n  padding-top: 30px;\n}\n<\/style>\n\t<\/div>\n\t\n","protected":false},"excerpt":{"rendered":"<p>Khi website \u0111\u1ed9t ng\u1ed9t t\u1eeb ch\u1ed1i k\u1ebft n\u1ed1i ho\u1eb7c API ph\u1ea3n h\u1ed3i ch\u1eadm b\u1ea5t th\u01b0\u1eddng, vi\u1ec7c \u0111o\u00e1n m\u00f2 nguy\u00ean nh\u00e2n qua file log c\u01a1 b\u1ea3n th\u01b0\u1eddng \u0111i v\u00e0o ng\u00f5 c\u1ee5t. \u0110\u00f3 l\u00e0 l\u00fac b\u1ea1n c\u1ea7n \u0111\u1ebfn wireshark. B\u1eb1ng c\u00e1ch &#8220;ch\u1ee5p X-quang&#8221; to\u00e0n b\u1ed9 l\u01b0u l\u01b0\u1ee3ng m\u1ea1ng, c\u00f4ng c\u1ee5 n\u00e0y ph\u01a1i b\u00e0y ch\u00ednh x\u00e1c g\u00f3i tin<\/p>\n","protected":false},"author":2,"featured_media":41870,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[83],"tags":[],"class_list":["post-41869","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-bao-mat-an-ninh-mang"],"_links":{"self":[{"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/posts\/41869","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/comments?post=41869"}],"version-history":[{"count":2,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/posts\/41869\/revisions"}],"predecessor-version":[{"id":41872,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/posts\/41869\/revisions\/41872"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/media\/41870"}],"wp:attachment":[{"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/media?parent=41869"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/categories?post=41869"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/interdata.vn\/blog\/wp-json\/wp\/v2\/tags?post=41869"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}