83 posts categorized "Sharkfest" Feed

LMTV Visibility | Every Bit, Byte and Packet (with Chris Bihary of Garland)



Garland170x200Please join +Chris Bihary, +Garland Technology CEO/Co-Founder and Jim Curtin, CEO/Co-Founder and Jin Qian, CTO/Co-Founder of CapStar Forensics to learn more about their joint solution that will be on display at this year's Sharkfest - the Wireshark Developer and User Conference.

With Garland Technology's recent product launch of its 1G Modular Packet Broker System the forensics community now has an affordable 1G packet broker that can filter, aggregate, regenerate and load balance to one or multiple monitoring tools.

In today's session we are going to discuss how this works with CapStar Forenic's platform to provide users faster MTTR and lower cost per investigation. Capstar Forensic's 'blazing fast' software tool features a fast load time and quick scans of PCAPs - allowing you to analyze complex networking and security scenarios.


To help us build our community, please share this live event with your fellow professionals on LinkedIn. For more episodes of LMTV, please visit LoveMyTool.TV.


LMTV Wireshark 2.0 | Panel Discussion with Gerald Combs and the Gang



PLEASE JOIN THIS LIVE EVENT : Wednesday, February 17, 2016 - 9:30 AM PST


Wireshark2In 1997, +Gerald Combs invented an open source tool for tracking down network problems which he called Ethereal. In 2006, the project re-emerged under the current name of +Wireshark. In 2008, after 10 years of development, Version 1.0 was finally released which coincided with the first annual +SharkFest Wireshark Developer and User Conference. At the end of 2015, Version 2.0 was released featuring a new user interface. At LoveMyTool, our writers have been publishing a series of articles explaining the various new features of 2.0.


Gerald combsIn this exciting special episode of LMTV, in addition to +Gerald Combs, we have invited +tony fortunato, +Chris Greer and +Paul Offord. Besides being writers of LoveMyTool, this panel of experts span the entire spectrum of +Wireshark enthusiasts. Their roles range from users, to instructors, to entrepreneurs and most recently, to contributing developers.

This will no doubt be an exciting show. Come join us live.


To help us build our community, please share this live event with your fellow professionals on LinkedIn. For more episodes of LMTV, please visit LoveMyTool.TV.


Continue reading "LMTV Wireshark 2.0 | Panel Discussion with Gerald Combs and the Gang" »


LMTV Sharkfest | TRANSUM How-To Part 2 - Troubleshooting Network and Application Performance Problems (by Paul Offord)




Live Event Schedule: Wednesday, August 5, 2015 - 9:30 AM


Picture of Paul OffordLMTV SharkfestIs it the network or isn’t it?

Upon popular demand, +Paul Offord is giving us a re-run of his well attended SharkFest 15 session, which covers performance analysis theory and the practicalities of using the TRANSUM free plugin for Wireshark.

The purpose of this two-part LMTV presentation is to look at how network engineers can use TRANSUM to quickly analyse a slow response time problem and produce concrete proof of the cause.

Specifically, in Part 2, Paul will demonstrate the analysis of two problems using TRANSUM and close the session with a look at some related assets available from the TribeLab project.

Paul has had a 37-year career in the IT industry that includes roles in hardware engineering, software engineering and network management. Prior to founding Advance7, he worked with IBM, National Semiconductor and Hitachi Data Systems. Paul is leading a project called TribeLab with the objective of promoting evidence-based troubleshooting to the IT industry. TRANSUM is one of the first outputs from the TribeLab project.


To help us build our community, please share this live event with your fellow professionals on LinkedIn. For more episodes of LMTV, please visit LoveMyTool.TV.

For more episodes of "LMTV TribeLab", please visit http://lovemytool.tv/tribelab.


LMTV Sharkfest | TRANSUM How-To Part 1 - Troubleshooting Network and Application Performance Problems (by Paul Offord)




Live Event Schedule: Wednesday, July 29, 2015 - 9:30 AM


Picture of Paul OffordLMTV SharkfestIs it the network or isn’t it?

Upon popular demand, +Paul Offord is giving us a re-run of his well attended SharkFest 15 session, which covers performance analysis theory and the practicalities of using the TRANSUM free plugin for Wireshark.

The purpose of this two-part LMTV presentation is to look at how network engineers can use TRANSUM to quickly analyse a slow response time problem and produce concrete proof of the cause.

Specifically, in Part 1, Paul will cover the concept of Request-Response Pairs, the RTE Model for measuring response times and the shortcomings of the standard Wireshark “Time from request” measurements.

Paul has had a 37-year career in the IT industry that includes roles in hardware engineering, software engineering and network management. Prior to founding Advance7, he worked with IBM, National Semiconductor and Hitachi Data Systems. Paul is leading a project called TribeLab with the objective of promoting evidence-based troubleshooting to the IT industry. TRANSUM is one of the first outputs from the TribeLab project.


To help us build our community, please share this live event with your fellow professionals on LinkedIn. For more episodes of LMTV, please visit LoveMyTool.TV or Sharkfest.TV.

For more episodes of "LMTV TribeLab", please visit http://lovemytool.tv/tribelab.


LMTV SharkFest | Packet Capture Techniques (by Paul Offord)

 

PacketCaptureSF15

Picture of Paul OffordLMTV SharkfestThere was a time when capturing packets was straightforward; set up a mirror or SPAN port, connect the analyzer to the destination and away we go. Now life is much more complex.

We have blade servers that include switches, VMs chatting via Virtual Switches and the older issue of capturing traffic between two programs running on the same operating system. In this session, we cover the tips and tricks that enable us to get those lovely network packets. We look at what works in an enterprise environment and what you should avoid.

Continue reading "LMTV SharkFest | Packet Capture Techniques (by Paul Offord)" »


LMTV SharkFest | Packet Matching (by Paul Offord)


PacketMatchingSF15


Picture of Paul OffordLMTV SharkfestWith the ability to capture traces along the path from user to server comes the advantage of narrowing down a problem to a particular area of the network.

Whilst matching identical packets may be fairly straightforward, it gets complicated when the traffic passes through firewalls, load balancers and proxies.

In the first of my SharkFest presentations, we covered tips and tricks to match packets as that flow from PC to server and back again.

In the following presentation I explain four different strategies to match packets so that we can deal with challenges such as:

  • NAT and PAT
  • VIPs
  • SSL especially with load balancers
  • Increased traffic volumes seen deeper into a system
  • Capture time sync inaccuracies

I illustrate the strategies and various techniques with Wireshark examples.

 

Continue reading "LMTV SharkFest | Packet Matching (by Paul Offord)" »