Wireshark Schulungen

Wireshark Schulungen

Wireshark, ein Netzwerk-Protokoll-Analysator

Wireshark Schulungsübersicht

Code Name Dauer Übersicht
nettbswsadv Advanced Network Troubleshooting Using Wireshark 21 hours This course is a continuation of the "Basic Network Troubleshooting Using Wireshark" course, and comes to provide the participants with advanced capabilities for network troubleshooting. The course provides an in-depth knowledge of network behaviour and problems, along with the capabilities to isolate and solve security and advanced applications problems. The course is based on theory, class exercise and labs. Command-Line Tools and How to Use Them TShark and Dumpcap Command-Line Tools Capinfos Command-Line Tool Editcap Command-Line Tool Mergecap Command-Line Tool Text2pcap Command-Line Tool Split and Merge Trace Files Advance usage of Capture and Display Filters Writing advanced Capture filters scripts Writing Advanced Display filters Using triggered filters The Expert System Advance Usage Dealing with congestion - shattered windows and flooding Baseline network communications Unusual network communications Vulnerabilities in the TCP/IP resolution process Lab exercises and case studies Who is talking? Port Scans Mutant Scans IP Scans Application Mapping OS Fingerprinting Lab exercises and case studies VoIP Analysis SIP analysis and troubleshooting RTP, RTCP and media analysis Creating VoIP filters and analysis profiles Lab exercises and case studies Applications Analysis and Troubleshooting HTTP analysis and troubleshooting FTP analysis and troubleshooting DNS operation and troubleshooting Video transmission analysys Databases network-related problems Network Security and Forensics Basics Gather information – what to look for Unusual traffic patterns Complementary tools Detecting Security Suspicious Patterns MAC and IP address spoofing Attacks signatures and signature locations ARP poisoning Header and sequencing signatures Attacks and exploits TCP splicing and unusual traffic DoS and DDoS Attacks Protocol scans maliciously malformed packets Lab exercises and case studies
nettbsws Basic Network Troubleshooting Using Wireshark 21 hours The purpose of the course is to provide the participant with basic knowledge of the Wireshark protocol analyzer. The course focuses on deep understanding of the tool, as the basics for using it for network troubleshooting. The course starts with packet capturing, capture and display filters, statistical features and the basics of the expert system. By the end of the course the participant will be able to perform basic troubleshooting in small to medium size networks. The course is based on theory, class exercise and labs. Introduction to network troubleshooting What is network troubleshooting Troubleshooting tools Troubleshooting methodologies Introduction to Wireshark How Wireshark Works Capturing Packets, What are capture and display filters Configuring Global Preferences Navigation and Colorization Techniques Using Time Values and Summaries Examining Basic Trace File Statistics Save, Export and Print Capture and Display Filters Capture filters – basics and filter language Display filters – basics and filter language Useful filters Lab exercises and case studies Using Time Values and Summaries Use the default time column setting and precision Use time between packets Set a time reference and view capture times Troubleshooting timing problems Lab exercises and case studies Using Statistics Tools Create I/O graphs Create TCP Time-Sequence graphs Analyze flow graphs Evaluate service response times Create Round-Trip-Time graphs Analyze TCP/IP flows Analyse applications flows Lab exercises and case studies The Expert System Basics Normal and un-normal Network Communications Causes of Performance Problems Packet Losses, Ack to longs and Retransmissions Lab and case studies Bandwidth Issues Bandwidth measurement User/flow throughput calculations Applications throughput calculations Bandwidth and throughput problems Lab exercises and case studies Latency Issues The primary points in calculating latency Plotting high latency times Free latency calculators Using the frame.time_delta filter Lab exercises and case studies Packet Loss and Retransmissions Packet loss and recovery - UDP and TCP Previous segment lost and Out-of-Order Segments events Duplicate ACKs and Fast Retransmissions TCP Retransmissions Zero window, Window changes and other window problems Lab exercises and case studies
muipv4 Understanding Multicast using IPv4 21 hours Transport of baseband audio and video streams across IP networks using multicast signalling protocols is becoming increasingly used in broadcast networks. This 3 day course/workshop covers the theory and practice of implementing these protocols within IP and Ethernet networks. The practical element of the course will use Cisco L3 switches and the multicast streamers and receivers will use the cross -platform VLC application. It is not necessary to have any expertise in the Cisco command line as the configuration of the devices can be instructor-led if required. However the course is intended to have at least 50% practical content and can be customised or even lengthened (to examine the protocols in more detail) if run as a single company event. Assignment and use of the Class D Multicast IP address space. Mapping multicast MAC addresses (L2) to multicast IP addressses (L3). An overview of the Real time Transport Protocol (RTP). Comparison between the 3 versions of the Internet Group Management Protocol (IGMP) and their use in requesting RTP streams within VLANs. IGMP snooping on a L2 network. IGMP queriers and querier resilience. The use of multicast routing using Protocol Independent Multicast (PIM) on an inter-VLAN and/or L3 routed network. The difference between PIM operated in Dense Mode PIM-DM and in Sparse Mode (SM). Registration of multicast streams with a Rendezvous Point (RP). Important timers used in IGMP and PIM protocols. Gateway resilience using Virtual Router Redundancy Protocol (VRRP) and mapping resilient multicast forwarding at L3 and L2 using the Rapid Spanning Tree Protocol (RSTP). Important timers and parameters in VRRP and RSTP. Operation and use of the multicast routing table to forward IP packets using a multicast destination IP address. The differences between Any Source Multicast (ASM) and Source Specific Multicast (SSM). Forwarding of multicast streams using shortest  path and shared trees. Use of Reverse Path Forwarding for loop avoidance in multicast forwarding. An overview of the Session Announcement Protocol (SAP) and it's use in describing and announcing RTP multicast streams that can be requested using IGMP. Practical: Wireshark will be used to analyse the multicast signalling (IGMP and SAP) and also the multicast media delivery (RTP). Lab 1.  Multicast Forwarding at L2 and IGMP Snooping. Lab 2.  Multicast Forwarding at L3 across VLANs using IGMP and PIM. Lab 3.  Announcement of multicast streams in L2/L3 networks using SAP and the mini-SAP Server. Lab 4.  Load balancing and failover of multicast streams carried in separate VLANs across a resilient Layer 2 network consisting of leaf (access) switches and 2 redundant spine (core) switches. Lab 5:  Multicast forwarding across VLAN boundaries in resilient Layer 3 networks consisting of leaf (access) switches and 2 redundant spine (core) switches. Lab 6.  Multicast forwarding over a routed L3 network using PIM-SM.

Kommende Kurse

Other regions

Wireshark Schulung, Wireshark boot camp, Wireshark Abendkurse, Wireshark Wochenendkurse , Wireshark Lehrer , Wireshark Privatkurs, Wireshark Seminar,Wireshark Kurs, Wireshark Coaching, Wireshark Seminare

Spezialangebote

Course Discounts Newsletter

We respect the privacy of your email address. We will not pass on or sell your address to others.
You can always change your preferences or unsubscribe completely.

EINIGE UNSERER KUNDEN