• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
ネットワークに流れるパケットをのぞいてみよう
 

ネットワークに流れるパケットをのぞいてみよう

on

  • 472 views

第12回山陰ITPro勉強会で行ったWiresharkのハンズオンに使用したスライドです。

第12回山陰ITPro勉強会で行ったWiresharkのハンズオンに使用したスライドです。

Statistics

Views

Total Views
472
Views on SlideShare
472
Embed Views
0

Actions

Likes
0
Downloads
0
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    ネットワークに流れるパケットをのぞいてみよう ネットワークに流れるパケットをのぞいてみよう Presentation Transcript

    • ISOL  
    • ISOL •  •  Wireshark • 
    • ISOL  
    • ISOL •  •  • 
    • ISOL OSI  Layer7 •  Web html h2p ntp End-­‐‑End TCP UDP IP IPX ieee802.3X ieee801.11X UTP
    • ISOL BDU) Tcp,udp IP Mac HUB
    • ISOL •  1 o  •  2 o MAC •  3 o IP
    • ISOL TCP/IP TCP/IP Wi-­‐‑Fi Ethernet
    • ISOL OSI
    • ISOL tcp/ip •  tcp/ip o  o  tcp ip o  tcp/ip udp o  ip o  tcp udp ip tcp(udp)/ip
    • ISOL tcp udp •  TCP o  o  o  o  o  3-Way •  UDP o  o  o  o 
    • ISOL
    • ISOL HUB C A B C D
    • ISOL HUB MAC C A B C D
    • ISOL IP C A B C D
    • ISOL •  •  • 
    • ISOL
    • ISOL •  •  o  o  o  o  o 
    • ISOL •  Wireshark o  GUI o  o  OS •  tcpdump o  CUI o  BSD Linux o  CUI •  Sniffer/Netasyst o  o  Windows Windows
    • ISOL •  o  •  o  L1 HUB o  L2-SW
    • ISOL SW SW SW SW SW SW SW
    • ISOL •  •  •  •  • 
    • ISOL •  Wireshark •  • 
    • ISOL Wireshark  
    • ISOL wireshark.org •    •  GPL-­‐‑OSS •  Ethereal   •      h4p://www.wireshark.org/
    • ISOL Wireshark
    • ISOL Wireshark •  OSS GPL •  0 •  Windows Mac Linux,BSD •  GUI •  Windows USB-Portable
    • ISOL SW SW SW SW SW
    • ISOL •  Wireshark • 
    • ISOL •  •  PC HDD ID
    • ISOL •  o  Capture stop •  o  File save
    • ISOL •  Filter •  o  o  IP o  MAC o  o  o 
    • ISOL
    • ISOL IP •  Filter ip.addr==x.x.x.x Apply Enter •  IP
    • ISOL MAC •  Filter eth.addr==xx:xx:xx:xx:xx:xx Apply •  MAC
    • ISOL •  Filter tcp.port==xxx Apply •  tcp xxx
    • ISOL •  Filter Expression o  Expression… o  Field name Relation Value OK o  Apply •  IP 192.168.2.1 Field name: ip.src IPv4 Relation: == Value: 192.168.2.1
    • ISOL •  and(&&) or(||) •  Range • 
    • ISOL
    • ISOL  
    • ISOL •  172.16.200.200/24 •  PC 172.16.200.xxx/24(DHCP) •  DNS 172.16.200.200(DHCP) •  httpd(https ),dns,sshd,telnetd,smtpd,pop3d •  user1,user2,user3,user4, • 
    • ISOL h2p •  Web •  Wireshark LAN •  http://testsv.sitw.com/ • 
    • ISOL Tcp  3way-­‐‑handshack
    • ISOL h2p h2ps •  https://testsv.sitw.com/ •  o  o  http
    • ISOL GET POST •  http://testsv.sitw.com/gettest.html web •  http://testsv.sitw.com/posttest.html web
    • ISOL BASIC •  BASIC •  •  URL http://testsv.sitw.com/basic/ User: sitw Pass: sitw
    • ISOL Digest •  Digest •  URL http://testsv.sitw.com/digest/ User: sitw Pass: sitw
    • ISOL •  • 
    • ISOL
    • ISOL •  telnet ssh •  DNS •  PING •  smtp smtp-auth pop3 imap4
    • ISOL
    • ISOL •  • 
    • ISOL •  •  Flow Graph o  Statistics Flow Graph o  o  IP o 
    • ISOL •  •  Follow TCP Stream o  Analyze Follow TCP Stream o  o  udp Follow UDP Stream
    • ISOL •  •  Expert infos o  Analyze Expert info Composite o  Error Warning Notes o  Chat tcp
    • ISOL •  •  IO Graph o  Statistics IO Graph o  Filter
    • ISOL •  •  Protocol Hierarchy o  Statistics Protocol Hierarchy o 
    • ISOL •  •  • 
    • ISOL •  o  Capture Options Capture File o  Use multiple files •  Proxy http Decode As o  Analyze Decode As o 
    • ISOL
    • ISOL Q !!w •  o  www.yahoo.co.jp o  IP o  o  DNS •  o  DHCP o  o  DNS
    • ISOL Q: •  o  o  o  DNS •  o  o  o  o  o 
    • ISOL Packet Black Hole
    • ISOL