In your day-to-day role as a network engineer you will spend much of your time resolving network issues from DNS, DHCP and TCP to slow performance issues and possible hacking attempts.
An essential part of your role will be the ability to capture and analyze packets travelling across the network, interpret the results and make suggestions based upon what you find.
Most engineers avoid packet sniffers because they feel they are complicated but once you do understand how to do it your confidence and ability will massively improve.
This course covers all you need to know about using Wireshark packet capture tool and equips you take take the highly prized exam, the Wireshark Certified Network Analyst or WCNA.
Included are in-depth lectures with real world traffic examples. You also get access to sample traffic patterns from Wireshark so you can do your own labs at home.
We've all heard of packet or network sniffing but what is it? Let's take a look at what it can do for us and why we need to understand it.
Wireshark are the market leader in network capture software. They also offer an internationally recognised exam.
We take our first look at the Wireshark environment and start getting used to the menu and options available. Please ensure you click on the resources link to the right and access the two urls which contain all the downloads you need to do the labs.
It's pretty rare that we would want to capture everything happening on the network. Here we learn how to filter what we are looking for.
Let's look at how to set the environment to exactly the way we want.
Wireshark offers a rich variety of ways to mark the traffic and patterns we are looking for. Here we examine colorization.
One way of narrowing down out outputs is with time values. Here's how.
How to make sense of the data we have captured. Practise makes perfect.
Display filters make examining and interpreting the output far easier. Here's how.
We need some way of removing all of the output data we don't need and assembling only what is relevant.
As you have seen already, Wireshark offers a broad range of customization. Here is how to do the same with profiles.
Often we will need to mark the output and export the data. Here's how.
The Expert System offers a very granular range of outputs and options. We explore how it works here.
This is where the rubber meets the road. Analysing TCP traffic will make up the bulk of your sniffing work.
DNS lookups are a common cause of network issues. We examine Domain Naming System here.
ARP resolves hardware to IP addresses. Here is how we check for ARP flows.
IPv4 traffic and how to analyse it using Wireshark.
ICMP is a commonly used service which reports on network connectivity. Here we see how to analyse it.
User Datagram Protocol is used by services such as DNS and TFTP. We learn how to capture it here.
TCP is connection oriented traffic and used by routing protocols and services such as Telnet and SSH.
Wireshark offers an advanced way to create graphs for traffic. Here is how we configure the options.
DHCP is used to provide IP information to hosts on most networks. We need to understand how to capture and analyse this traffic.
It's everybodys favorite for sure. Here we look at sniffing HTTP.
FTP is used to transfer large files across the network. Here we look into capturing the traffic.
E-mail uses sevices such as IMAP and POP3. We need to understand how to capture it.
Wireless networking is a rapidly growing area of internetworking offering increasingly advanced security and features. We look at capturing it here.
A huge appeal of voice networking is the fact we can use our network instead of having to pay the phone company for calls. Here we capture voice over IP.
Moving on from baselining, you also need to know how to use Wireshark to discover the root cause of network performance issues.
A big part of your job as a Wireshark engineer is understanding how to baseline a network. You can then use this to measure issues or suggest improvements.
Network forensics comes under the remit of network security and hardening. We look into how it works here.
Is your network being scanned for vulnerabilities? We find out here.
We are still looking at security here. This time how to analyze suspect traffic.
You may wish to dig down into the command line as part of your job. Here we learn how to do just that.
We finish off by looking at expert tricks and tips learned on-the-job by our expert trainer.
We are a team of highly skilled and passionate IT engineers. Our full time jobs range from network architect, designer, security consultant, virtualization engineer, voice engineer, project manager and web developer. Our qualifications range from MCSE, JNCIE to dual Cisco CCIE.
Although most people teaching out there are IT trainers we are IT engineers who also train. There is a big difference as you will see and with over 1000,000 students trained through our classroom IT courses, books and videos you can feel assured that you are in safe hands.
Let us share our real world expertise with you so you not only pass the exam but have the confidence to apply your skills in the real world. Whether you want to work on a help desk or become the go to IT expert for your field we have a course for you.
IT is a rewarding and demanding career and there is a huge demand for skilled people to support small to very large companies. No matter what your age or skill level, there will be a role for you if you are qualified and passionate.
We are looking forward to helping you pass your exam and land your dream IT job.