Network Analysis Using Wireshark Cookbook (Paperback)

Yoram Orzach

  • 出版商: Packt Publishing
  • 出版日期: 2013-09-08
  • 售價: $2,010
  • 貴賓價: 9.5$1,910
  • 語言: 英文
  • 頁數: 452
  • 裝訂: Paperback
  • ISBN: 1849517649
  • ISBN-13: 9781849517645
  • 相關分類: Wireshark
  • 下單後立即進貨 (約3~4週)

買這商品的人也買了...

商品描述

This book will be a massive ally in troubleshooting your network using Wireshark, the world's most popular analyzer. Over 100 practical recipes provide a focus on real-life situations, helping you resolve your own individual issues.

Overview

  • Place Wireshark in your network and configure it for effective network analysis
  • Configure capture and display filters to get the required data
  • Use Wireshark’s powerful statistical tools to analyze your network and its expert system to pinpoint network problems

In Detail

Is your network slow? Are your users complaining? Disconnections? IP Telephony problems? Video freezes? Network analysis is the process of isolating these problems and fixing them, and Wireshark has long been the most popular network analyzer for achieving this goal. Based on hundreds of solved cases, Network Analysis using Wireshark Cookbook provides you with practical recipes for effective Wireshark network analysis to analyze and troubleshoot your network.

"Network analysis using Wireshark Cookbook" highlights the operations of Wireshark as a network analyzer tool. This book provides you with a set of practical recipes to help you solve any problems in your network using a step-by-step approach.

"Network analysis using Wireshark Cookbook" starts by discussing the capabilities of Wireshark, such as the statistical tools and the expert system, capture and display filters, and how to use them. The book then guides you through the details of the main networking protocols, that is, Ethernet, LAN switching, and TCP/IP, and then discusses the details of application protocols and their behavior over the network. Among the application protocols that are discussed in the book are standard Internet protocols like HTTP, mail protocols, FTP, and DNS, along with the behavior of databases, terminal server clients, Citrix, and other applications that are common in the IT environment.

In a bottom-up troubleshooting approach, the book goes up through the layers of the OSI reference model explaining how to resolve networking problems. The book starts from Ethernet and LAN switching, through IP, and then on to TCP/UDP with a focus on TCP performance problems. It also focuses on WLAN security. Then, we go through application behavior issues including HTTP, mail, DNS, and other common protocols. The book finishes with a look at network forensics and how to search and find security problems that might harm the network.

What you will learn from this book

  • Configure Wireshark for effective network troubleshooting
  • Set up various display and capture filters
  • Use basic statistical tools that provide you with "who is talking" tables, conversations, and HTTP statistics
  • Master both the standard and advanced features of IO graphs
  • Use the expert system to pinpoint various types of events that might influence the behavior of your network
  • Learn about Wi-Fi testing and how to resolve problems related to wireless LANs
  • Explore performance issues in TCP/IP
  • Explore failures due to delays and jitters in the network
  • Find and resolve problems due to bandwidth, throughput, and packet loss
  • Identify and locate faults in communication applications including HTTP, FTP, mail, and various other applications – Microsoft OS problems, databases, voice, and video over IP
  • Identify and locate faults in detecting security failures and security breaches in the network

商品描述(中文翻譯)

這本書將成為您使用 Wireshark 進行網路故障排除的強大助手,Wireshark 是全球最受歡迎的分析工具。這本書提供了超過 100 個實用的食譜,專注於實際情境,幫助您解決個別的問題。

概述:
- 在您的網路中放置 Wireshark,並配置它以進行有效的網路分析
- 配置捕獲和顯示過濾器以獲取所需的數據
- 使用 Wireshark 強大的統計工具分析您的網路,並使用專家系統定位網路問題

詳細內容:
您的網路速度慢嗎?用戶抱怨嗎?斷線?IP 電話問題?視頻卡頓?網路分析是隔離這些問題並解決它們的過程,而 Wireshark 長期以來一直是實現此目標的最受歡迎的網路分析工具。基於數百個已解決的案例,《使用 Wireshark 進行網路分析食譜》為您提供了實用的食譜,以有效地使用 Wireshark 進行網路分析和故障排除。

《使用 Wireshark 進行網路分析食譜》突出了 Wireshark 作為網路分析工具的操作。本書提供了一系列實用的食譜,以逐步的方式幫助您解決網路中的任何問題。

《使用 Wireshark 進行網路分析食譜》首先討論了 Wireshark 的功能,例如統計工具和專家系統、捕獲和顯示過濾器以及如何使用它們。然後,本書引導您深入了解主要的網路協議,即以太網、LAN 切換和 TCP/IP,然後討論應用協議的詳細信息以及它們在網路上的行為。本書討論的應用協議包括標準的互聯網協議,如 HTTP、郵件協議、FTP 和 DNS,以及數據庫、終端服務器客戶端、Citrix 和其他在 IT 環境中常見的應用程序的行為。

在自下而上的故障排除方法中,本書通過解釋如何解決網路問題,從 OSI 參考模型的各層開始。本書從以太網和 LAN 切換開始,經過 IP,然後到 TCP/UDP,重點關注 TCP 的性能問題。它還關注 WLAN 安全性。然後,我們通過包括 HTTP、郵件、DNS 和其他常見協議在內的應用程序行為問題。本書以網路取證以及如何搜索和發現可能損害網路的安全問題作為結尾。

從本書中您將學到:
- 配置 Wireshark 以進行有效的網路故障排除
- 設置各種顯示和捕獲過濾器
- 使用基本的統計工具,提供“誰在說話”表、對話和 HTTP 統計數據
- 掌握 IO 圖表的標準和高級功能
- 使用專家系統定位可能影響網路行為的各種事件
- 了解 Wi-Fi 測試以及解決與無線局域網相關的問題
- 探索 TCP/IP 中的性能問題
- 探索由於網路延遲和抖動引起的故障
- 找到並解決由帶寬、吞吐量和封包丟失引起的問題
- 識別和定位通信應用程序中的故障,包括 HTTP、FTP、郵件和其他各種應用程序 - Microsoft 操作系統問題、數據庫、語音和視頻通話
- 識別和定位檢測網路安全故障和安全漏洞的問題