This session was presented at Sharkfest 2014 - Dominican University, CA - June 16-20,2014
Good trace file analysis begins at the collection stage. If we don’t get the right packets, at the right time, in the right place, with the right collection method, then we may spin our wheels looking through millions of perfectly good packets, behaving exactly as they should. In this session, we will look into the top mistakes in packet collection and how to mitigate them, ensuring that traces are as valid as possible for troubleshooting the root cause of a problem. We will also explore common capture methods such as SPAN, Tap, and laptop vs. hardware-based capture, examining the pros and cons of each.
Chris Greer specializes in packet analysis and training services, helping clients to resolve network and application performance problems, while training them to do the same on their own. As a Consultant for Packet Pioneer LLC, he provides remote trace file analysis, on-site troubleshooting, and delivers training courses for vendor-supported tools. As a Wireshark Certified Network Analyst, Chris delivers hands-on Wireshark courses and is a certified partner of Wireshark University. Chris is a regular author for lovemytool.com and various vendor-supported blogs