This 4-day instructor-led training course shows learners how to use Wireshark 2.0 to view, capture, analyze, and troubleshoot network traffic. Emphasis is placed on a hands-on lab-based approach where learners use Wireshark on a live network. The course is vendor-agnostic and is not specific to any single model or brand of networking gear like Cisco, Juniper, Intel, or HP. The course covers protocol analysis and troubleshooting across all vendors and types of network infrastructure.
Learning Objectives
In this class, students will understand how to:
- Understand key network protocols in today's enterprise wired and wireless networks. Analyzed protocols include: HTTP, TCP, UDP, IP, DHCP, DNS, ICMP, Ethernet, IEEE 802.11, Bluetooth, ZigBee, and ZigBee IP.
- View and analyze network traffic.
- Capture and filter network traffic.
- Analyze previously captured network traffic.
- Develop reusable profiles for analyzing and troubleshooting network traffic.
- Interpret the Wireshark 2.0 graphs and statistical reports.
- Identify and troubleshoot common network problems.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Specialty Areas
- Cyber Defense Infrastructure Support
- Systems Architecture
- Systems Requirements Planning
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.