Upload File

taming the shark · 2013. 8. 16. · taming the shark tips and tricks on using wireshark hands on...

  • Home
  • Documents
  • Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug
12
Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug. 15 2013 4:30-5:30 PM Session 13282 Hynes Room 202 Twitter @mreede Find us on Facebook at [email protected] LinkedIn: de.linkedin.com/in/mreede/ Created using

Upload: others

Post on 20-Jan-2021

4 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

Taming the Shark Tips and Tricks on Using WiresharkHands On Labs

IBM SmartCloud: Matthias Burkhard

Matthias Burkhard

IBM Germany

Thursday Aug. 15 2013 4:30-5:30 PMSession 13282 Hynes Room 202

Twitter @mreede Find us on Facebook at [email protected]: de.linkedin.com/in/mreede/

Created using

http://www.ibm.com/cloud-computing/social/us/en/
mailto:[email protected]
Page 2: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

2

Why use different profiles?A trace is a trace is a trace – isn't it?

Page 3: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

3

Why use different profiles?Coloring Rules! Show what's in there!

Page 4: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

4

Wireshark Labs3 Problems to chose from

● Problem 1: SMTP Performance Problem● TCP connections over WAN don't perform well– http://www.cloudshark.org/captures/2021a63878f51

● Problem 2: FTP TLS to ShopZ fails● FTP download from z/OS to ShopZ fails– http://www.cloudshark.org/captures/0b9861a0cf43

● Problem 3: iSCSI Performance Problem ● SQL Server getting timeouts writing on storage array– http://www.cloudshark.org/captures/a38f5226e356

Page 5: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

5

Lab1: SMTP Performance Problemhttps://www.cloudshark.org/captures/2e96a1d22cdc

● Questions● Where was the trace taken, client or server?● How far away is the remote host?● What is the RTT on the connection● Wha is the largest windowsize offered?

● By the client● By the server

● Are there any retransmissions?● If so, why?

● Who closes the connection?● How many bytes were sent/received?

Page 6: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

6

Lab2: FTP TLS Problem http://www.cloudshark.org/captures/0b9861a0cf43

● Questions● Where was the trace taken, client or server?● How far away is the remote host?● What is the RTT on the connection● What Ciphersuites does the client offer

● By the client● By the server

● How does the server react?● If so, why?

● What can be done to fix this problem?

Page 7: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

7

Lab3: SCSI Performance Problem http://www.cloudshark.org/captures/a38f5226e356

● Questions● Where was the trace taken? Client or server● What is the operating system of the local host?● How far away is the remote host?● How many iSCSI requests are in the trace?● What are the iSCSI responsetimes?● How many retransmissions are in the trace?● How many delayed ACKs are in the trace?● What can be done to fix this problem?

Page 8: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

Session 13282 “Taming the Shark”SMTP Performance

8

Page 9: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

Session 13282 “Taming the Shark”http://tinyurl.com/TamingShark

Page 10: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

Session 13282 “Taming the Shark”http://www.cloudshark.org/captures/0b9861a0cf43

10

Page 11: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

Session 13282 “Taming the Shark”http://www.cloudshark.org/captures/a38f5226e356

11

Page 12: Taming the Shark · 2013. 8. 16. · Taming the Shark Tips and Tricks on Using Wireshark Hands On Labs IBM SmartCloud: Matthias Burkhard Matthias Burkhard IBM Germany Thursday Aug

Coloring Rules!Add some colors to your office ...

12

Your feedback is important:This was session 13282 at SHARE in Boston 2013

Taming the Shark

http://tinyurl.com/ipwizards [email protected]

Created using


Taming THC

Burkhard Stubert: Project Portfolio and Expertise

Taming Trigonometry

Taming Text

Emis prof burkhard 2010

Saint Matthias Parish - St. Matthias Catholic Church · PDF fileSaint Matthias Parish 128 Bryn Mawr Avenue Bala Cynwyd, Pennsylvania 19004 Website: Email: matthias@

Taming botnets

Taming Facebook

-ED 098 783 Burkhard, Marianne Switzerland; Economy

wireshark Hands-On LabSHARK@SHARE wireshark Hands-On Lab Thursday, March 5, 2015 01:45 PM – 02:45 PM Sheraton Seattle, Redwood Session 16752 Matthias Burkhard IBM Germany

Wiki Taming

The New Worldview of the Physicist Burkhard Heimheim-theory.com › wp-content › uploads › 2016 › 03 › I-v...Burkhard Heim's exceptional talents Burkhard Heim was born the

Lauren Burkhard Maggie Hartigan Priya Bhagat Richard Lechette

Taming Shrew

Taming Risk

Taming the (wire)Shark wireshark Hands on Lab the (wire)Shark wireshark Hands on Lab Matthias Burkhard [email protected] IBM Germany August 8. 2012 4:30 PM – 5:30 PM 11342 Orange

Burkhard Militzer, Carnegie Institution of Washington: “Path Integral Monte Carlo”, 2007 Burkhard Militzer Geophysical Laboratory Carnegie Institution

Taming pipes

Burkhard Heim Mass Formula

Stefan Ripka, Hagen Lind, Matthias Wangenheim, University Hannover Klaus Wiese, Burkhard Wies, Continental Akron, 20.09.2010 Investigation of friction

Burkhard Rost (Columbia New York) Some gory details of protein secondary structure prediction Burkhard Rost CUBIC Columbia University [email protected]

Taming Time

2. Introduction to Modelling and Animation · © 2007 Burkhard Wuensche burkhard Slide 2© 2008 Burkhard Wuensche burkhard Slide 2

Taming Dragons

Prof. Burkhard Ludewig - Research KSSG...Kontakt Prof. Burkhard Ludewig Titel Prof. Dr. Vorname Burkhard Nachname Ludewig Strasse Rorschacherstrasse 95 Stadt 9007 St. Gallen Land Switzerland

Taming BuddyPress

Burkhard Martens - Thermal Flying

Welcome - Introduzione - Burkhard Stubert

PyParis2017 / Performant python, by Burkhard Kloss

EPS109 Final Project Professor Burkhard By: Sol Kim

Lauren Burkhard

Taming Mr Hayes: Mitigating Signaling Based Attacks on Smartphones Colin Mulliner, Steffen Liebergeld, Matthias Lannge, and Jean-Pierre Seifert Technische

New How to use IPCS to analyze VTAM/TCPIP CSM Storage Problems · 2013. 8. 19. · How to Use IPCS to analyze VTAM/TCPIP CSM Storage Problems Matthias Burkhard IBM Germany IBM SmartCloud:

Taming Cocoon

D-Burkhard Korn - SLWeiss Per Due Liuti