Introduction to Wireshark

 

  >> Lab Assignment:  

1- Read the lecture slides on Wireshark (Introduction to Ethereal / slides)

a.     Learn about using different filters

 

2-    Make sure you can run Wireshark (ethereal) on your station

3-    Watch Introduction To Wireshark in Wireshark site http://www.wireshark.org/

4-    Make sure you can download Wireshark on your machine at how from http://www.wireshark.org/  in case you like to complete the lab at home

5-    Check available resources on course web site.

 

>> Lab Assignment

  Part I: Services

• How do you find out the status of a particular service such as tftp (if it is running or not)?
• What is PS command in Linux and how do you know if a particular process (such as vsftpd) is running?
• In Ubuntu Linux, how do you download (install) a new package called tcpdump?
• How do you ping an IP adderss 3 time such that the PING packet size is only 9 bytes and the time interval between each PING is 5 seconds. You must ensure the content of teh PING is 2F.

 

Read Chapter 4 Using Ethereal.  You may have to download bgp.pcap & tcp_stream_analysis & follow_tcp_stream\

• Plot the average throughput. You can use the downloaded examples (e.g., follow_tcp_stream).
• Plot the round trip time. You can use the downloaded examples.