An intensive advanced TCP/IP course focusing on the details of the protocols according to the RFCs. This course is designed to go into the technical details of the protocols and is not for those that are new to TCP/IP. A particular focus is on TCP and performance. Those more interested in routing protocols should see our Definitive IP routing for engineers course. It is expected that delegates are totally familiar with configuration addressing. Hands on sessions consist of protocol analysis using Wireshark.
Advanced technical staff.
TCP/IP Foundation for engineers
5 days
Network analysis, troubleshooting, network traffic
flows.
Hands on Download/install Wireshark.
Capturing packets, libpcap, winpcap, airpcap.
Dissectors and plugins. The menus. Right click.
Hands on Using Wireshark.
Wireshark and switches and routers. Remote
traffic capture.
Hands on Capturing packets.
Applying, identifiers, qualifiers, protocols,
addresses, byte values. File sets, ring buffers.
Hands on Capture filters.
Configuration folders. Global and personal
configurations. Capture preferences, name
resolution, protocol settings. Colouring traffic.
Profiles.
Hands on Customising Wireshark.
Packet time, timestamps, packet arrival times,
delays, traffic rates, packets sizes, overall bytes.
Hands on Measuring high latency.
Protocols and applications, conversations, packet
lengths, destinations, protocol usages, strams,
flows.
Hands on Wireshark statistics.
Applying, clearing, expressions, right click,
conversations, endpoints, protocols, combining
filters, specific bytes, regex filters.
Hands on
Display traffic.
Traffic reassembly, UDP and TCP conversations,
SSL.
Hands on Recreating streams.
Filtered, marked and ranges.
Hands on Export.
The expert system. DNS, ARP, IPv4, IPv6, ICMP,
UDP, TCP.
Hands on Analysing traffic.
Basic graphs, Advanced IO graphs. Round Trip
Time, throughput rates.
Hands on Graphs.
DHCP, HTTP, FTP, SMTP.
Hands on Analysing
application traffic.
Signal strength and interference, monitor mode
and promiscuous mode. Data, management and
control frames.
Hands on WLAN traffic.
Call flows, Jitter, packet loss. RTP, SIP.
Hands on Playing back calls.
Baselining. High latency, arrival times, delta
times.
Hands on Identifying poor performance.
Host vs network forensics, unusual traffic
patterns, detecting scans and sweeps, suspect
traffic.
Hands on Signatures.
Tshark, capinfos, editcap, mergecap, text2pcap,
dumpcap.
Hands on Command tools.
"Very good instruction. Kept classes interesting and fun."
"The course gave the required amount of information and was very well presented."
This structured training course seeks to build upon workbook learning through the use of group exercises, dynamic discussion and individual tasks in order to deliver an engaging and interactive module that will ensure all candidates are able to transfer their new skills into the workplace.