Wireshark Certified Network Analyst – WCNA

Learn how to master the industry leading packet capture software tool and gain an in-depth understanding of TCP/IP.
4.3 (124 ratings)
Instead of using a simple lifetime average, Udemy calculates a
course's star rating by considering a number of different factors
such as the number of ratings, the age of ratings, and the
likelihood of fraudulent ratings.
2,575 students enrolled Bestselling in Wireshark
25% off
Take This Course
  • Lectures 34
  • Length 5 hours
  • Skill Level All Levels
  • Languages English
  • Includes Lifetime access
    30 day money back guarantee!
    Available on iOS and Android
    Certificate of Completion
Wishlisted Wishlist

How taking a course works


Find online courses made by experts from around the world.


Take your courses with you and learn anywhere, anytime.


Learn and practice real-world skills and achieve your goals.

About This Course

Published 1/2015 English

Course Description

In your day-to-day role as a network engineer you will spend much of your time resolving network issues from DNS, DHCP and TCP to slow performance issues and possible hacking attempts.

An essential part of your role will be the ability to capture and analyze packets travelling across the network, interpret the results and make suggestions based upon what you find.

Most engineers avoid packet sniffers because they feel they are complicated but once you do understand how to do it your confidence and ability will massively improve.

This course covers all you need to know about using Wireshark packet capture tool and equips you take take the highly prized exam, the Wireshark Certified Network Analyst or WCNA.

Included are in-depth lectures with real world traffic examples. You also get access to sample traffic patterns from Wireshark so you can do your own labs at home.

What are the requirements?

  • Access to a computer or laptop
  • All sniffing files and lab materials included
  • A general understanding of computer networking will help

What am I going to get from this course?

  • Set up Wireshark on a home or live network
  • Analyze traffic including TCP and UDP
  • Baseline your network and spot potential issues
  • Check if your network is being scanned by hackers
  • Filter ARP, DNS, DHCP, ICMP and other common ports and services
  • Find the Cause of network performance problems

Who is the target audience?

  • IT students who want to understand TCP in great detail
  • Network engineers looking to learn essential troubleshooting skills
  • Computer novices and advanced users who want to gain confidence
  • IT engineers who want to really understand TCP/IP
  • Anybody working or looking to work as a network engineer

What you get with this course?

Not for you? No problem.
30 day money back guarantee.

Forever yours.
Lifetime access.

Learn on the go.
Desktop, iOS and Android.

Get rewarded.
Certificate of completion.


Section 1: Introducing Wireshark & Network Analysis

We've all heard of packet or network sniffing but what is it? Let's take a look at what it can do for us and why we need to understand it.


Wireshark are the market leader in network capture software. They also offer an internationally recognised exam.

Section 2: Configuring & Using Wireshark

We take our first look at the Wireshark environment and start getting used to the menu and options available. Please ensure you click on the resources link to the right and access the two urls which contain all the downloads you need to do the labs.


It's pretty rare that we would want to capture everything happening on the network. Here we learn how to filter what we are looking for.


Let's look at how to set the environment to exactly the way we want.


Wireshark offers a rich variety of ways to mark the traffic and patterns we are looking for. Here we examine colorization.


One way of narrowing down out outputs is with time values. Here's how.


How to make sense of the data we have captured. Practise makes perfect.


Display filters make examining and interpreting the output far easier. Here's how.


We need some way of removing all of the output data we don't need and assembling only what is relevant.


As you have seen already, Wireshark offers a broad range of customization. Here is how to do the same with profiles.


Often we will need to mark the output and export the data. Here's how.


The Expert System offers a very granular range of outputs and options. We explore how it works here.

Section 3: TCP Traffic Analysis

This is where the rubber meets the road. Analysing TCP traffic will make up the bulk of your sniffing work.


DNS lookups are a common cause of network issues. We examine Domain Naming System here.


ARP resolves hardware to IP addresses. Here is how we check for ARP flows.


IPv4 traffic and how to analyse it using Wireshark.


ICMP is a commonly used service which reports on network connectivity. Here we see how to analyse it.


User Datagram Protocol is used by services such as DNS and TFTP. We learn how to capture it here.


TCP is connection oriented traffic and used by routing protocols and services such as Telnet and SSH.


Wireshark offers an advanced way to create graphs for traffic. Here is how we configure the options.


DHCP is used to provide IP information to hosts on most networks. We need to understand how to capture and analyse this traffic.


It's everybodys favorite for sure. Here we look at sniffing HTTP.


FTP is used to transfer large files across the network. Here we look into capturing the traffic.


E-mail uses sevices such as IMAP and POP3. We need to understand how to capture it.

Section 4: Advanced Wireshark Features

Wireless networking is a rapidly growing area of internetworking offering increasingly advanced security and features. We look at capturing it here.


A huge appeal of voice networking is the fact we can use our network instead of having to pay the phone company for calls. Here we capture voice over IP.


Moving on from baselining, you also need to know how to use Wireshark to discover the root cause of network performance issues.


A big part of your job as a Wireshark engineer is understanding how to baseline a network. You can then use this to measure issues or suggest improvements.


Network forensics comes under the remit of network security and hardening. We look into how it works here.


Is your network being scanned for vulnerabilities? We find out here.


We are still looking at security here. This time how to analyze suspect traffic.


You may wish to dig down into the command line as part of your job. Here we learn how to do just that.


We finish off by looking at expert tricks and tips learned on-the-job by our expert trainer.

Students Who Viewed This Course Also Viewed

  • Loading
  • Loading
  • Loading

Instructor Biography

How To Network, Making IT Easy

We are a team of highly skilled and passionate IT engineers. Our full time jobs range from network architect, designer, security consultant, virtualization engineer, voice engineer, project manager and web developer. Our qualifications range from MCSE, JNCIE to dual Cisco CCIE.

Although most people teaching out there are IT trainers we are IT engineers who also train. There is a big difference as you will see and with over 1000,000 students trained through our classroom IT courses, books and videos you can feel assured that you are in safe hands.

Let us share our real world expertise with you so you not only pass the exam but have the confidence to apply your skills in the real world. Whether you want to work on a help desk or become the go to IT expert for your field we have a course for you.

IT is a rewarding and demanding career and there is a huge demand for skilled people to support small to very large companies. No matter what your age or skill level, there will be a role for you if you are qualified and passionate.

We are looking forward to helping you pass your exam and land your dream IT job.

Ready to start learning?
Take This Course