Wireshark Week - How to Fix Slow (by Chris Greer)

Sick of being blamed for the spinning wheels and delays in applications? 

Most network engineers are tired of hearing "It's the network", but don't have the packets to prove it. This week, Viavi Solutions is hosting Sharkweek - a five day series of webinars featuring Wireshark. This year, they have focused on these titles:

Intro to Wireshark 

How to fix "Slow"

Troubleshooting Performance in the Cloud

Monitoring and Assessing Encrypted Traffic

Troubleshooting High-Speed Networks

In the webinar about how to fix slow, we will look at how to set up Wireshark to make pinpointing problems faster, learn new filters to hone in on "slow", and learn how to quickly isolate the problem domain. 

Check out the links above to register. Hope to see you there! 

Chris Greer Packet Pioneer Logo

Author Profile - Chris Greer is a Network Analyst for Packet Pioneer LLC. Chris regularly assists companies in tracking down the source of network and application performance problems using a variety of protocol analysis and monitoring tools including Wireshark. Chris also delivers training and develops technical content for several analysis vendors.

Wireshark Week - Troubleshooting Performance in the Cloud (by Paul Offord)

While the decision to move to the cloud rarely involves them, supporting end-user issues often falls to the network team. Migrating an application to a Virtual Private Cloud (VPC) could leave engineers in the dark, lacking visibility and insight to diagnose and resolve user issues. The good news is that with a bit of planning and some lateral thinking, we can still use packets to see into the cloud.

Cloud-2804717-1024x682

Complexity

There are two main factors affecting our ability to analyse network traffic in a cloud environment.  The first is component location:

  • Single Cloud - all components are hosted in a single VPC
  • Multicloud - where application components are hosted by more than one cloud provider
  • Hybrid - where some application components are retained onsite

The second complicating factor is the type of hosting or platform service used.  These service types become progressively more abstract.  Using Amazon Web Service (AWS) offerings as an illustration:

  • EC2 i3.metal - a bare metal server offering for customers with particular needs
  • EC2 - a virtual machine running Linux or Windows
  • Fargate - a managed Docker container service
  • Elastic Beanstalk - a managed application server
  • Lambda - serverless code execution

As we progress down the list we get further away from the underlying infrastructure.  The situation is further complicated because as we move down this list there is a big increase in the dynamic nature of the application execution.  Docker containers will start …

Continue reading "Wireshark Week - Troubleshooting Performance in the Cloud (by Paul Offord)" »


Keeping Your House In Order (by Tony Fortunato)

I have been involved in a lot of network migration, installation and cleanup projects.

I can appreciate having equipment labeled and areas organized since I am involved in all aspects of the network life cycle: design, Installation and support.

For example, network designers rely on accurate information to figure out how much rack space, power outlets and cables they need for an install.  Installers need the same information to properly install equipment. Then the installers update the installation documentation with any changes and the same applies to the support staff.

One thing I get picky about – almost OCD, is keeping my eyes open for potential issues. Some examples are rerouting or replacing ‘temporary’ cables. I have a laundry list of items I look out for when working anywhere.  I like to think of it as a ‘value’ I add to my services.

Here is a sample of what I look for:

  • Cables that are routed across the front of the equipment
  • Cables that are too short and too long
  • Damaged cabling
  • Extra cables lying around – do they work?
  • Error lights or beeps that are ignored
  • No equipment or rack labels
  • Ethernet cable couplers
  • Inability to close rack doors
  • Power bars ‘daisy chained from one another’
  • Excess dust on equipment and rack ventilation
  • POE injector match port speed
  • Grounding

In most cases, the client agrees with me and we make any suggested changes immediately, when possible. In other cases, the recommendations are noted and scheduled during the next maintenance window.

Sometimes the client doesn’t agree and goes with the odd adage, “if it aint broke, don’t fix it”. Based on my experience, I know that some of the issues are higher priority and its just a matter of time before it becomes an issue.

Last year I showed a client that there was a damaged power and Ethernet cable that should be replaced. He thanked me for pointing it out and I found out later that he did nothing about it. Recently his staff called me for some network performance issues and I was told that manager no longer works there.

I went on site and was surprised that one of the wireless issues traced back to that frayed cable I pointed out a year ago.

Here is a photo of the cables I pointed out and you can determine if it should have been replaced.

IMG_0087 (Large)

 

Picture2
ethernet coupler
Picture2
cable pinched in door

 

 

 

 

 

 

Continue reading other LoveMyTool posts by Tony Fortunato »


Wireshark Week at Viavi (by The Lovemytool Team)

Viavi - Wireshark Week - 2018 !!!

The week of December 10-14, 2018 is Wireshark Week! Do Not miss it and the learning experience!

Region Capture

Register now for free and sink your teeth into an entire week of strategies from Wireshark experts designed to sharpen your troubleshooting skills.

Register Here - Free

In this free webinar series, you will learn:

Presenter: Chris Greer - Introduction to Wireshark

Presenter: Chris Greer - How to Fix “Slow”

Presenter: Paul Offord - Troubleshooting Performance in the Cloud

Presenter: Ross Bagurdes - Monitoring and Assessing Encrypted Traffic

Presenter: Chris Greer - Troubleshooting High-Speed Networks

Enjoy the freshest troubleshooting strategies and jaw-dropping hacks, especially for Wireshark users. Attend all five sessions and we’ll provide you with a certificate to showcase your learning.

Shark IQ: Test Your Wireshark Knowledge

VIAVI Solutions brings you the opportunity to put your Wireshark knowledge to the test with this 10 question quiz. Are you a Wireshark beast, comparable to the legendary Great White?  Or just a bucket of chum?

TAKE THE QUIZ  click here


Introductory Guide to Network Packet Brokers (by Derek Burke)

Introductory Guide to Network Packet Brokers

  

What is a Network Packet Broker?

A Network Packet Broker (NPB) is a switch-like network device ranging in size from portables devices, to 1 and 2 RU units, up to massive chassis and blade systems. Unlike a switch a Network Packet Broker does not alter the traffic passing through it in any way unless specifically instructed to do so. An NPB can accept traffic on one or more interfaces, perform some pre-defined function on that traffic, and output it to one or more interfaces.

This is commonly referred to as “any to any”, “many to any”, and “any to many” port mapping. The functions that can be performed can be as simple as forwarding or dropping traffic and as complex as filtering on Layer 5+ information to identify a specific session. The interfaces on an NPB can be copper connections but are frequently SFP/SFP+ and QSFP cages to allow a broad variety of media and bandwidth speeds to be used. The feature sets of NPBs are built around the principle of maximizing the efficiency of network appliances; particularly monitoring, analysis, and security tools.

Continue reading "Introductory Guide to Network Packet Brokers (by Derek Burke)" »