Wireshark’s new tool – Transum (by Tony Fortunato)

I’ve been playing around with TRASUM for a year or so and got excited when it was announced that it is now included with the current Wireshark build. No more downloading, putting the files in the correct folder, etc..

Transum is a pretty helpful addon since it provides protocol various statistics in your trace file.

In the video below I provide a quick rundown of how to enable it, configure and use it. Once you get playing with it, you will see its immediate benefit.

Here’s the two links I reference in the video to make life a bit easier for you.

Transum Tribelab link:

https://community.tribelab.com/course/view.php?id=9

Sharkfest presentation:

https://sharkfest.wireshark.org/assets/presentations15/33.pdf

 

 

Continue reading other LoveMyTool posts by Tony Fortunato »


The End of the Long Haul (by Paul W. Smith)

Goldfish and Phone

The “long haul” is a lot longer than it used to be.  Over the last century, average life expectancy has increased by 30 years (unless you live in Monaco where you get 9 more).  If you are life-planning for the long haul, your task is getting harder.

Common use of the term “long haul” began about 100 years ago and has grown since.  It originated with early sailors who were hauling goods over the open sea trade routes from Egypt to Alexandria.  Merchants trading along short hauls in the Mediterranean Sea got more paydays, but for lesser amounts.  If you were willing to take some risk and be patient, bigger returns were available from the long haul. 

Those old rules still apply.  People contemplating major life change, say from marriage, career or weight loss, will often tell themselves that they are in it for the long haul.  One night stands, job-hopping or crash dieting may produce swifter fulfillment, but the long haul pays off better overall.  Everybody knows that.

Continue reading "The End of the Long Haul (by Paul W. Smith)" »


How TCP Works - Sequence Numbers (by Chris Greer)

TCP is important stuff for network engineers to know. 

Why? 

Today's problems aren't so cut-and-dry as they used to be. When a problem strikes, we can't just say "it's not the network" and go along with our day. A core understanding of TCP and how it carries and acknowledges data goes a long way in finding the root cause of performance problems today. 

One key aspect of TCP that is important to learn is the Sequence and Acknowledgement process. To put it simply, these numbers in the TCP headers indicate how much data has been sent and received. They allow each endpoint to determine if there was packet loss, what needs to be retransmitted, and help to determine how much data is in flight. 

For a six-minute crash-course on how TCP Sequence numbers work, check out this video:

 

Thanks for checking it out and hopefully it helps all packet-heads out there! 

Author Profile - Chris Greer is a Network Analyst for Packet Pioneer LLC and a Certified Wireshark Network Analyst. Chris regularly assists companies in tracking down the source of network and application performance problems using a variety of protocol analysis and monitoring tools including Wireshark. Chris also delivers training and develops technical content for several analysis vendors. Got network problems? Let's get in touch

Chris Greer Packet Pioneer Logo


Wireshark Decode As Feature (By Tony Fortunato)

Wireshark does a great job Identifying, Decoding, Dissecting and presenting packets and their associated packets.

Every so often you may find that Wireshark doesn’t figure out the protocol and leaves you with a bunch of TCP or UDP packets.

In this video I show how to quickly teach Wireshark what the protocol should be.

Even if you don’t know the protocol, you might be able to look in the Bytes pane to figure out what it should be.

Enjoy.



Continue reading other LoveMyTool posts by Tony Fortunato »


Linkedin Profile http://ca.linkedin.com/in/fortunat

Lovemytool Blog: http://www.lovemytool.com/blog/tony-fortunato/

Network Computing Blog: http://www.networkcomputing.com/author-bio.asp?author_id=2332

Garland Technology Blog: http://www.garlandtechnology.com/blog/author/tony-fortunato

Youtube Channel: http://www.youtube.com/user/thetechfirm

Google Plus: http://plus.google.com/+Thetechfirmplus


LMTV LIVE | Distributed Network Monitoring with Raspberry Pi (with Panos Vouzis of NetBeez)



YouTube LIVE start time: Wednesday, August 9, 2017 - 9: 30 AM (PST)


Netbeez Single-board computers, like the Raspberry Pi or Odriod, are getting widespread adoption within the network engineering community thanks to their computational power (approximately 1 GHz) and low cost (less than $50 per unit). As a result, more and more companies are deploying these devices within their enterprise networks and using them as monitoring sensors to collect analytics on network performance, wireless networks, and cloud services.

Panos Vouzis is a cofounder of NetBeez which provides network performance monitoring designed for network managers primarily interested in early fault detection and quick troubleshooting of complex wide area networks.


Click to read other LMTV posts by contributors of LoveMyTool »