Wireshark Certified Network Analyst – WCNA
4.2 (498 ratings)
Course Ratings are calculated from individual students’ ratings and a variety of other signals, like age of rating and reliability, to ensure that they reflect course quality fairly and accurately.
4,605 students enrolled

Wireshark Certified Network Analyst – WCNA

Learn how to master the industry leading packet capture software tool and gain an in-depth understanding of TCP/IP.
4.2 (498 ratings)
Course Ratings are calculated from individual students’ ratings and a variety of other signals, like age of rating and reliability, to ensure that they reflect course quality fairly and accurately.
4,605 students enrolled
Created by How To Network
Last updated 1/2015
English [Auto]
Current price: $48.99 Original price: $74.99 Discount: 35% off
2 days left at this price!
30-Day Money-Back Guarantee
This course includes
  • 5 hours on-demand video
  • 24 downloadable resources
  • Full lifetime access
  • Access on mobile and TV
  • Certificate of Completion
Training 5 or more people?

Get your team access to 4,000+ top Udemy courses anytime, anywhere.

Try Udemy for Business
What you'll learn
  • Set up Wireshark on a home or live network
  • Analyze traffic including TCP and UDP
  • Baseline your network and spot potential issues
  • Check if your network is being scanned by hackers
  • Filter ARP, DNS, DHCP, ICMP and other common ports and services
  • Find the Cause of network performance problems
  • Access to a computer or laptop
  • All sniffing files and lab materials included
  • A general understanding of computer networking will help

In your day-to-day role as a network engineer you will spend much of your time resolving network issues from DNS, DHCP and TCP to slow performance issues and possible hacking attempts.

An essential part of your role will be the ability to capture and analyze packets travelling across the network, interpret the results and make suggestions based upon what you find.

Most engineers avoid packet sniffers because they feel they are complicated but once you do understand how to do it your confidence and ability will massively improve.

This course covers all you need to know about using Wireshark packet capture tool and equips you take take the highly prized exam, the Wireshark Certified Network Analyst or WCNA.

Included are in-depth lectures with real world traffic examples. You also get access to sample traffic patterns from Wireshark so you can do your own labs at home.

Who this course is for:
  • IT students who want to understand TCP in great detail
  • Network engineers looking to learn essential troubleshooting skills
  • Computer novices and advanced users who want to gain confidence
  • IT engineers who want to really understand TCP/IP
  • Anybody working or looking to work as a network engineer
Course content
Expand all 34 lectures 04:51:16
+ Introducing Wireshark & Network Analysis
2 lectures 26:01

We've all heard of packet or network sniffing but what is it? Let's take a look at what it can do for us and why we need to understand it.

Preview 10:01

Wireshark are the market leader in network capture software. They also offer an internationally recognised exam.

Introduction to Wireshark
+ Configuring & Using Wireshark
11 lectures 01:25:16

We take our first look at the Wireshark environment and start getting used to the menu and options available. Please ensure you click on the resources link to the right and access the two urls which contain all the downloads you need to do the labs.

Capture Traffic

It's pretty rare that we would want to capture everything happening on the network. Here we learn how to filter what we are looking for.

Capture Filters

Let's look at how to set the environment to exactly the way we want.

Global and Personal Preferences

Wireshark offers a rich variety of ways to mark the traffic and patterns we are looking for. Here we examine colorization.

Colorization in Wireshark

One way of narrowing down out outputs is with time values. Here's how.

Define Time Values and Interpret Summaries

How to make sense of the data we have captured. Practise makes perfect.

Interpret Basic Trace File Statistics

Display filters make examining and interpreting the output far easier. Here's how.

Create and Apply Display Filters

We need some way of removing all of the output data we don't need and assembling only what is relevant.

Follow Streams and Reassemble Data

As you have seen already, Wireshark offers a broad range of customization. Here is how to do the same with profiles.

Customize Wireshark Profiles

Often we will need to mark the output and export the data. Here's how.

Annotate, Save, Export and Print Packets

The Expert System offers a very granular range of outputs and options. We explore how it works here.

Use Wireshark's Expert System
+ TCP Traffic Analysis
12 lectures 01:30:30

This is where the rubber meets the road. Analysing TCP traffic will make up the bulk of your sniffing work.

TCP/IP Analysis Overview

DNS lookups are a common cause of network issues. We examine Domain Naming System here.

DNS Traffic

ARP resolves hardware to IP addresses. Here is how we check for ARP flows.

ARP Traffic

IPv4 traffic and how to analyse it using Wireshark.

IPv4 Traffic

ICMP is a commonly used service which reports on network connectivity. Here we see how to analyse it.

ICMP Traffic

User Datagram Protocol is used by services such as DNS and TFTP. We learn how to capture it here.

UDP Traffic

TCP is connection oriented traffic and used by routing protocols and services such as Telnet and SSH.

TCP Traffic

Wireshark offers an advanced way to create graphs for traffic. Here is how we configure the options.

Graph IO Rates and TCP Trends

DHCP is used to provide IP information to hosts on most networks. We need to understand how to capture and analyse this traffic.

DHCP Traffic

It's everybodys favorite for sure. Here we look at sniffing HTTP.

HTTP Traffic

FTP is used to transfer large files across the network. Here we look into capturing the traffic.

FTP Traffic

E-mail uses sevices such as IMAP and POP3. We need to understand how to capture it.

Email Traffic
+ Advanced Wireshark Features
9 lectures 01:29:29

Wireless networking is a rapidly growing area of internetworking offering increasingly advanced security and features. We look at capturing it here.

WLAN Analysis

A huge appeal of voice networking is the fact we can use our network instead of having to pay the phone company for calls. Here we capture voice over IP.

VoIP Analysis

Moving on from baselining, you also need to know how to use Wireshark to discover the root cause of network performance issues.

Find the Cause of Performance Problems

A big part of your job as a Wireshark engineer is understanding how to baseline a network. You can then use this to measure issues or suggest improvements.

Traffic Baselining

Network forensics comes under the remit of network security and hardening. We look into how it works here.

Network Forensics Overview

Is your network being scanned for vulnerabilities? We find out here.

Detect Scanning and Discovery Processes

We are still looking at security here. This time how to analyze suspect traffic.

Analyze Suspect Traffic

You may wish to dig down into the command line as part of your job. Here we learn how to do just that.

Effective use of Command Line Tools

We finish off by looking at expert tricks and tips learned on-the-job by our expert trainer.

Wireshark Tricks and Tips