Which of the following Wireshark filters is used to locate duplicate IP address traffic?

The choice indicating arp.duplicate-address-detected is the correct filter to locate duplicate IP address traffic because Address Resolution Protocol (ARP) is specifically designed to map IP addresses to MAC (Media Access Control) addresses on a local area network. When devices on a network attempt to use the same IP address, ARP requests will reveal this conflict, leading to potential issues in network communication, such as dropped packets or reliance on the wrong MAC address.

Using the arp.duplicate-address-detected filter in Wireshark allows network administrators and analysts to capture and analyze packets where duplicate IP addresses are reported. This is essential for troubleshooting IP conflicts and ensuring proper network functionality, allowing devices to communicate without interference caused by address duplication.

The other options involve TCP, which operates at a higher layer of the OSI model and is not responsible for IP address assignment or conflict resolution. Thus, they would not be effective in detecting duplicate IP address traffic, as they pertain to TCP sessions rather than the underlying issues of IP address misconfiguration.