Troubleshooting TCP/IP Networks with Wireshark

Product Description

In this hands-on Troubleshooting TCP/IP Networks with Wireshark course, you will receive in-depth training on Wireshark® and TCP/IP communications analysis. You will learn to use Wireshark to identify the most common causes of performance problems in TCP/IP communications. You will develop a thorough understanding of how to use Wireshark efficiently to spot the primary sources of network performance problems, and you will prepare for the latest Wireshark Certified Network Analyst (WCNA) certification exam.

Topics you will cover in this course include:

• Traffic capturing techniques and analyzer placement
• Traffic filtering (capture/display)
• Customized profiles creation
• Coloring rules, graphing, field interpretations, and functionality of key TCP/IP communications
• Normal behavior of ARP, DNS, IP, TCP, UDP, ICMP, and HTTP/HTTPS
• Latency issue identification
• Connection establishment concerns
• Service refusals
• Common indications of reconnaissance processes and breached hosts

This course includes the official Wireshark study guide to help you prepare for the WCNA certification exam.

Please bring your own laptop loaded with Wireshark to class. You may download Wireshark for free at www.wireshark.org.

AUDIENCE

The Troubleshooting TCP/IP Networks with Wireshark course will be of interest to anyone interested in learning to troubleshoot and optimize TCP/IP networks and analyze network traffic with Wireshark, especially:

Network Engineers

Information Technology Specialists

Security Analysts

Those preparing for the Wireshark Certified Network Analyst exam

LEARNING OBJECTIVES

Upon successful completion of the education and examination components related to this qualification, candidates can expect to gain competencies in the following:

Top 10 reasons for network performance complaints

Place the analyzer properly for traffic capture on a variety of network types

Capture packets on wired and wireless networks

Configure Wireshark for best performance and non-intrusive analysis

Navigate through, split, and work with large traffic files

Use time values to identify network performance problems

Create statistical charts and graphs to pinpoint performance issues

Filter out traffic for more efficient troubleshooting and analysis

Customize Wireshark coloring to focus on network problems faster

Use Wireshark’s Expert System to understand various traffic problems

Use the TCP/IP Resolution Flowchart to identify possible communication faults

Analyze normal/abnormal Domain Name System (DNS) traffic

Analyze normal/abnormal Address Resolution Protocol (ARP) traffic

Analyze normal/abnormal Internet Protocol v4 (IPv4) traffic

Analyze normal/abnormal Internet Control Messaging Protocol (ICMP) traffic

Analyze normal/abnormal User Datagram Protocol (UDP) traffic

Analyze normal/abnormal Transmission Control Protocol (TCP) traffic

Analyze normal/abnormal Hypertext Transport Protocol (HTTP/HTTPS) traffic

PREREQUISITES

Candidates for this course must have completed the TCP/IP Networking course.