192 posts categorized "Open Source Tools" Feed

Hey Network Engineers - What To Do While Everyone Is Away (by Chris Greer)

Empty office Wireshark

You drew the short straw.

Over the next couple of weeks, while everyone else is skiing in some amazing place or finally taking that year-end time with their kids, you are left behind at the office to “monitor” the system.

Unless you work for UPS or Amazon, it will most likely be a relaxed couple of weeks! It will be tempting to kick back and watch YouTube, or act busy while doing some other mundane chore.

However, the last two weeks of the year is also a great time to be a network engineer. Here is a list of things you can work on while everyone else is away.

  1. Throughput Testing

Continue reading "Hey Network Engineers - What To Do While Everyone Is Away (by Chris Greer)" »

EMP or Solar Flare? What Happens to Your Electronics? (by Casey Mullis)

With all the things going on in the world today, how many plan for all things? How many think about the things to come and wonder, what can I do to protect myself? What about your electronics? You never heard of a solar flare? It has happened before and knocked out all the telegraph lines. Then what? What about a nuclear attack? Chance of that is slim as no one wants to turn the world in to a waist land. What about EMP (Electro Magnetic Pulse)? Many claims Russia has a large one to use as I am sure many other countries do as well.


Continue reading "EMP or Solar Flare? What Happens to Your Electronics? (by Casey Mullis)" »

LMTV WTF Live | Wireshark Quick Start Tutorial (by Tony Fortunato)

Live Event Time: Tuesday, August 18, 2015 - 10:00 AM PST

Sharkfest2015_offseasonTony fortunato Someone more famous than many of us had once said, "You can never be overdressed or overeducated."

In that spirit, we are going back to the basics this week. Please join +tony fortunato for a 30 minute interactive session of tips, tricks and general Wireshark usage. Specifically, Tony will cover the following topics:

  • Setting up you Preferences
  • Merging files
  • Leveraging the capture options
  • What columns to use and when
  • Whats a profile
  • IO Graph
  • How to decrypt some basic forms of encryption
  • Capturing from the command prompt
  • File and packet comments…

Plus lots more.

Continue reading "LMTV WTF Live | Wireshark Quick Start Tutorial (by Tony Fortunato)" »

Dealing With the Data Deluge: Accelerating Packet Capture (by Dan Joe Barry)

Dealing With the Data Deluge: Accelerating Packet Capture

 The digital universe is doubling in size every two years, and digital data volume is projected to reach 44 trillion gigabytes by 2020, according to IDC. Not only is there exponentially more data than ever before, but it’s coming in faster than ever – at network speeds up to 100Gbps. This poses clear challenges for network professionals who need new types of tools to protect the network.

Data drowning

Packet capture (PCAP) is a fundamental tool to help engineers and administrators manage and secure large and small-scale networks alike. A mechanism for intercepting data packets that are traversing a computer network, PCAP is a common capability deployed within an organization to monitor security events and network performance, identify data leaks, troubleshoot issues and even perform forensic analysis to determine the impact of network breaches.

However, current PCAP systems using commodity network interface cards (NICs)  are not equipped to deal with the demands of performing precision capture and replay at 10/40/100 Gbps speeds.

A ray of light shines, though, to give hope to network administrators. There are solutions today that have been built to facilitate packet capture at speeds topping 100 Gbps. The use of network acceleration technology, coupled with open source network monitoring and capture solutions, can enable organizations to keep up with the demands of precision packet capture and replay on high-speed networks.

Analyzing with PCAP - 

Continue reading "Dealing With the Data Deluge: Accelerating Packet Capture (by Dan Joe Barry)" »

LMTV SharkFest | Packet Capture Techniques (by Paul Offord)



Picture of Paul OffordLMTV SharkfestThere was a time when capturing packets was straightforward; set up a mirror or SPAN port, connect the analyzer to the destination and away we go. Now life is much more complex.

We have blade servers that include switches, VMs chatting via Virtual Switches and the older issue of capturing traffic between two programs running on the same operating system. In this session, we cover the tips and tricks that enable us to get those lovely network packets. We look at what works in an enterprise environment and what you should avoid.

Continue reading "LMTV SharkFest | Packet Capture Techniques (by Paul Offord)" »