1 / 15

Wireshark(Ethereal)

Wireshark(Ethereal). Wireshark(Ethereal). Wireshark is previously known as Ethereal. It switched name in May 2006 due to trademark issues . Step 1. Download and install wireshark from website(sourceforge) http://www.wireshark.org/download.html Choose “ Stable Release 1.4.4 ”. STEP BY STEP.

deane
Download Presentation

Wireshark(Ethereal)

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Wireshark(Ethereal)

  2. Wireshark(Ethereal) • Wireshark is previously known as Ethereal. It switched name in May 2006 due to trademark issues . • Step 1. • Download and install wireshark from website(sourceforge) • http://www.wireshark.org/download.html • Choose “Stable Release 1.4.4”

  3. STEP BY STEP • Step 2. • Start Wireshark, select menu Capture->Options

  4. STEP BY STEP • Step 3. • Choose your network interface. TA’s InterfaceChoose your own here

  5. STEP BY STEP • Step 4. • Seletct Capture Filter (more on this later)

  6. STEP BY STEP • Step 5. • Click start, and use your computer as usual After some network use Before start capturing

  7. STEP BY STEP • Step 6. • After 5 minutes, click “stop the running live capture” • Now you’ll have A LOT OF packets, with their time, source and dest. IP, protocol (may be in app., transport, or link layer), etc.

  8. STEP BY STEP “Follow TCP stream” shows packets in sequence and the way that the application layer sees it. • Step 7. • You can type filter string into the ”Filter:” box • E.g. “http” can filter out all packets which are not HTTP packet • You can right click on a TCP packet, and use “Follow TCP Stream” to trace this TCP stream

  9. STEP BY STEP • Step 8. • Now you can see detailed information of this TCP stream The stream content is displayed in the same sequence as it appeared on the network. Traffic from A to B is marked in red, while traffic from B to A is marked in blue.

  10. Requirements & Grade • 1.(10%) Download and install the Wireshark software: • Go to http://www.wireshark.org/download.html and download and install the Wireshark binary for your computer.

  11. Requirements & Grade • 2.(10%) How long did it take from when the HTTP GET message was sent until the HTTP OK reply was received

  12. Requirements & Grade • 3.(10%)How many HTTP GET request messages were sent by your browser? To which Internet addresses were these GET requests sent? • 4.(10%)Can you tell whether your browser downloaded the two images serially, or whether they were downloaded from the two web sites in parallel? Explain. 

  13. Requirements & Grade • 5.(10%)How many packets were sent from your local machine and how many from the remote machine?

  14. Requirements & Grade • Deadline 4/6 23:59 mail to : top90233a@cmlab.csie.ntu.edu.tw • Do not copy others! • 遲交一天扣5分

  15. Requirements & Grade • PART1 手寫作業 • Ch1 problems: 2, 5, 6, 10, 23(a)(b) • Deadline 3/30 (助教上課前會去收) • Do not copy others! • 遲交一天扣5分

More Related