Using Wireshark to View Network Traffic
Lab - Using Wireshark to View Network Traffic
Topology
Objectives
Part 1: (Optional) Download and Install Wireshark
Part 2: Capture and Analyze Local ICMP Data in Wireshark
Start and stop data capture of ping traffic to local hosts.
Locate the IP and MAC address information in captured PDUs.
Part 3: Capture and Analyze Remote ICMP Data in Wireshark
Start and stop data capture of ping traffic to remote hosts.
Locate the IP and MAC address information in captured PDUs.
Explain why MAC addresses for remote hosts are different than the MAC addresses of local hosts.
Background / Scenario
Wireshark is a software protocol analyzer, or "packet sniffer" application, used for network troubleshooting, analysis, software and protocol development, and education. As data streams travel back and forth over the network, the sniffer "captures" each protocol data unit (PDU) and can decode and analyze its content according to the appropriate RFC or other specifications.
Wireshark is a useful tool for anyone working with networks and can be used with most labs in the CCNA courses for data analysis and troubleshooting. This lab provides instructions for downloading and installing Wireshark, although it may already be installed. In this lab, you will use Wireshark to capture ICMP data packet IP addresses and Ethernet frame MAC addresses.
Required Resources
1 PC (Windows 7, Vista, or XP with Internet access)
Additional PC(s) on a local-area network (LAN) will be used to reply to ping requests.
Part 1: (Optional) Download and Install Wireshark
Wireshark has become the industry standard packet-sniffer program used by network engineers. This open source software is available for many different operating systems, including Windows, Mac, and Linux. In Part 1 of this lab, you will download and install the Wireshark software program on your PC.
Note: If Wireshark is already installed on your PC, you can skip Part 1 and go directly to Part 2. If Wireshark is not installed on your PC, check
Topology
Objectives
Part 1: (Optional) Download and Install Wireshark
Part 2: Capture and Analyze Local ICMP Data in Wireshark
Start and stop data capture of ping traffic to local hosts.
Locate the IP and MAC address information in captured PDUs.
Part 3: Capture and Analyze Remote ICMP Data in Wireshark
Start and stop data capture of ping traffic to remote hosts.
Locate the IP and MAC address information in captured PDUs.
Explain why MAC addresses for remote hosts are different than the MAC addresses of local hosts.
Background / Scenario
Wireshark is a software protocol analyzer, or "packet sniffer" application, used for network troubleshooting, analysis, software and protocol development, and education. As data streams travel back and forth over the network, the sniffer "captures" each protocol data unit (PDU) and can decode and analyze its content according to the appropriate RFC or other specifications.
Wireshark is a useful tool for anyone working with networks and can be used with most labs in the CCNA courses for data analysis and troubleshooting. This lab provides instructions for downloading and installing Wireshark, although it may already be installed. In this lab, you will use Wireshark to capture ICMP data packet IP addresses and Ethernet frame MAC addresses.
Required Resources
1 PC (Windows 7, Vista, or XP with Internet access)
Additional PC(s) on a local-area network (LAN) will be used to reply to ping requests.
Part 1: (Optional) Download and Install Wireshark
Wireshark has become the industry standard packet-sniffer program used by network engineers. This open source software is available for many different operating systems, including Windows, Mac, and Linux. In Part 1 of this lab, you will download and install the Wireshark software program on your PC.
Note: If Wireshark is already installed on your PC, you can skip Part 1 and go directly to Part 2. If Wireshark is not installed on your PC, check