160 likes | 246 Views
Wireshark(Ethereal). Wireshark(Ethereal). Wireshark is previously known as Ethereal. It switched name in May 2006 due to trademark issues . Step 1. Download and install wireshark from website(sourceforge) http://www.wireshark.org/download.html Choose “ Stable Release 1.4.4 ”. STEP BY STEP.
E N D
Wireshark(Ethereal) • Wireshark is previously known as Ethereal. It switched name in May 2006 due to trademark issues . • Step 1. • Download and install wireshark from website(sourceforge) • http://www.wireshark.org/download.html • Choose “Stable Release 1.4.4”
STEP BY STEP • Step 2. • Start Wireshark, select menu Capture->Options
STEP BY STEP • Step 3. • Choose your network interface. TA’s InterfaceChoose your own here
STEP BY STEP • Step 4. • Seletct Capture Filter (more on this later)
STEP BY STEP • Step 5. • Click start, and use your computer as usual After some network use Before start capturing
STEP BY STEP • Step 6. • After 5 minutes, click “stop the running live capture” • Now you’ll have A LOT OF packets, with their time, source and dest. IP, protocol (may be in app., transport, or link layer), etc.
STEP BY STEP “Follow TCP stream” shows packets in sequence and the way that the application layer sees it. • Step 7. • You can type filter string into the ”Filter:” box • E.g. “http” can filter out all packets which are not HTTP packet • You can right click on a TCP packet, and use “Follow TCP Stream” to trace this TCP stream
STEP BY STEP • Step 8. • Now you can see detailed information of this TCP stream The stream content is displayed in the same sequence as it appeared on the network. Traffic from A to B is marked in red, while traffic from B to A is marked in blue.
Requirements & Grade • 1.(10%) Download and install the Wireshark software: • Go to http://www.wireshark.org/download.html and download and install the Wireshark binary for your computer.
Requirements & Grade • 2.(10%) How long did it take from when the HTTP GET message was sent until the HTTP OK reply was received
Requirements & Grade • 3.(10%)How many HTTP GET request messages were sent by your browser? To which Internet addresses were these GET requests sent? • 4.(10%)Can you tell whether your browser downloaded the two images serially, or whether they were downloaded from the two web sites in parallel? Explain.
Requirements & Grade • 5.(10%)How many packets were sent from your local machine and how many from the remote machine?
Requirements & Grade • Deadline 4/6 23:59 mail to : top90233a@cmlab.csie.ntu.edu.tw • Do not copy others! • 遲交一天扣5分
Requirements & Grade • PART1 手寫作業 • Ch1 problems: 2, 5, 6, 10, 23(a)(b) • Deadline 3/30 (助教上課前會去收) • Do not copy others! • 遲交一天扣5分