Lab 4. Overview To Wireshark Tool.: Learning Outcomes
Lab 4. Overview To Wireshark Tool.: Learning Outcomes
Lab 4. Overview To Wireshark Tool.: Learning Outcomes
K. HEMANTH KUMAR
Learning Outcomes:
Basics of Wireshark.
Understanding Packet capturing tools.
Understanding how Packets are transmitted in the network using packet capturing
tools.
Pre -Lab
Packet analyzers also help detect potential network intrusion by looking for network
access patterns inconsistent with standard usage. In a process known
as packet capture (PCAP), analyzers snag packet data as it moves over your network. It saves
a copy of this data as a file on your monitoring device
NetworkMiner. ...
Colasoft Capsa ManageEngine NetFlow Analyzer. ...
Savvius Omnipeek. ...
Wireshark. ...
Telerik Fiddler. ...
NETRESEC.
180031172 18CS3279 Network security lab
K. HEMANTH KUMAR
network analyzer is a device that gives you a very good idea of what is happening on
a network by allowing you to look at the actual data that travels over it, packet by
packet. A typical network analyzer understands many protocols, which enables it to
display conversations taking place between hosts on a network.
In - Lab
Task -1: Dinesh a tech evangelist is interested to learn about packet analyzer tools and
decided to use Wireshark. Dinesh trust in you, now your job is help Dinesh in learning
Wireshark, now help Dinesh in installing Wireshark tool .
Sol:
2. Now click on the first link and you will get a new page
3. click on download.
180031172 18CS3279 Network security lab
K. HEMANTH KUMAR
Wireshark Overview:
1. Wireshark Overview
4. Select the interface from the capture options: 5. If you are at a desktop, you need to select
the Ethernet interface being used. Note that there could be multiple interfaces. In general,
you can select any interface but that does not mean that traffic will flow through that
interface. The network interfaces (i.e., the physical connections) that your computer has to
the network are shown.
180031172 18CS3279 Network security lab
K. HEMANTH KUMAR
180031172 18CS3279 Network security lab
K. HEMANTH KUMAR
Task -3: While you explain the overview of Wireshark, Dinesh observed some IP address in
the packet capturing window, Dinesh want to extract the information of particular IP address
and see where it is going and from where it is receiving the information, help Dinesh to filter
particular IP address and its source and destination.
Task -4: While performing IP filtering Dinesh wants to know for which ports and services
are IP address are connecting, now help Dinesh to filter required port or service.
Number Assignment
tcp.port == 80
180031172 18CS3279 Network security lab
K. HEMANTH KUMAR
Post Lab:
Task -1: Dinesh was so excited to learn more, now he was interested in learning how OSI
and TCP/IP models works in real time, now your task is to explain Dinesh the each layer of
network models using Wireshark.
Tcp syn
180031172 18CS3279 Network security lab
K. HEMANTH KUMAR
Tcp syn-ack