See how Insoft Services is responding to COVID-19

PAPW – Packet Analysis Power Workshop (Wireshark)

X

Student Registration Form

Thank you for being interested in our training! Fill out this form to pre-book or request information about the delivery options.

* Required

Course Schedule

I'd like to receive emails with the latest updates and promotions from Insoft.

Data Protection & Privacy

I hereby allow Insoft Ltd. to contact me on this topic. Further, I authorise Insoft Ltd. processing, using collecting and storing my personal data for the purpose of these activities. All your data will be protected and secured as outlined in our privacy policy.


5 Dagen
Packet Analysis

Classroom + Online

Course Details

Cursusbeschrijving

During this 5 day instructor led training course, delegates will receive a comprehensive introduction into the features, functions and the usage of the Wireshark Analyser and will learn methods and techniques about monitoring, analysis and troubleshooting of their networks from the packet level. This course will also focus on the detailed analysis and troubleshooting of typical network protocols and applications with specific focus on switched Ethernet, TCP/IP networks and TCP/IP based applications.

 

This course comprises of the Packet Analysis with Wireshark Analyzer (PAW) 2 day course and Advanced Packet Analysis with Wireshark Analyzer (APAW) 3 day course delivered back to back in one week.

Inhoud

Features, functions and basic operation of Ethereal/Wireshark Analyser

  • Introduction and operation of Wireshark
  • Live Capture and Live Capture settings
  • Display options and basic interpretation
  • Working with Display Filters and Capture Filters
  • File Input and Output

Advanced features of Wireshark Analyser

  • Preferences and user profiles
  • Name resolution
  • Packet Reassembly
  • Expert Information
  • Packet colorisation

Methodology and techniques of network analysis and troubleshooting

  • What is packet analysis?
  • Steps and techniques for analysing traffic
  • Analysing Switched Ethernet – Tapping into the network
  • Capturing wireless network traffic
  • Measuring network delay and response time
  • Measuring network throughput and overhead

Statistics and Baselining

  • Terms and Overview
  • Wireshark Statistics
  • Application Profiles

Analysing networks and applications

  • Fault isolation
  • Typical network related problems
  • Application types and typical application related problems

Switched Ethernet analysis

  • Duplex & Speed Issues
  • Spanning Tree operation and Spanning Tree analysis
  • Analyzing VLANs, VLAN-Tagging

TCP/IP analysis of the network layer

  • IP addressing
  • Typical IP scenarios
  • IP options
  • ICMP, ARP and DHCP

TCP/IP analysis of the transport layer

  • TCP functions
  • Session Setup, Data Transfer and Session Teardown
  • Window Mechanism and Window optimization
  • TCP options (SACK, Window Scaling) and TCP timers
  • UDP functions

Analysing and troubleshooting TCP/IP with Wireshark

  • Wireshark preferences for advanced TCP/IP analysis
  • Typical TCP/IP related problems
  • Wireshark Expert Info messages and their meanings

TCP/IP applications

  • HTTP
  • FTP
  • SMB
  • DNS
  • SSL

Doelgroep

This course is aimed at network administrators, network managers and all technical staff who are responsible for planning, implementing, and ensuring high performance operation of their data networks.

Voorkennis

Delegates are required to attend the following course or have equivalent knowledge:

  • Networking & TCP/IP Fundamentals (NWF)