ECE4500_Project4

ECE4500_Project4 - ECE 4500: Fundamentals of Computer...

Info iconThis preview shows pages 1–2. Sign up to view the full content.

View Full Document Right Arrow Icon
ECE 4500: Fundamentals of Computer Systems Design Project 4: Network Protocols and TCP/IP Architecture Objectives You will use the Wireshark network protocol analyzer to capture, display, and analyze network packets. Completing this project will reinforce your understanding of network protocols and the TCP/IP architecture. Your report should address the items specified in the text boxes contained in the Procedure. Procedure Section 1: Getting Started with Wireshark A. Installing Wireshark Wireshark is a network protocol analyzer that is freely available under the GNU General Public License. Wireshark allows you to capture network packets that are seen on an interface of your computer (in some cases, even if they are not destined for your computer) and to inspect and analyze sets of packets. It includes built-in protocol decoders that allow you to inspect protocol-specific fields and flows. Download Wireshark from http://www.wireshark.org/ . Run the installation file and follow the instructions to install Wireshark. The default installation for the “GTK2 user interface” is assumed for the project. As part of the Wireshark installation, for Windows machines you should also install WinPcap. For Windows Vista, you will need to start the “NPF service.” Note that the Wireshark web site includes an FAQ list, a help Wiki, and extensive documentation. In Section 1A of your report, indicate whether or not you successfully installed Wireshark. Also, discuss any problems that you encountered or indicate that you did not encounter any problems. B. A Quick Introduction to Wireshark Wireshark has three basic functions: (i) capturing packets, which it does in conjunction with WinPcap in the Windows operating system; (ii) displaying the captured packets; and (iii) analyzing packet flows. You can capture all traffic on an interface, or you can create a “capture filter” to capture only packets with specific characteristics. After the packets have been captured, you can display all packets or, using a “display filter,” you can display only packets that have certain characteristics. You can also analyze sets of packets, such as packets in a TCP session. As a quick introduction to some basic functions in Wireshark and to ensure that you can capture packets, follow the steps below. This will guide you through the process of capturing, displaying, and analyzing packets from a HTTP (web) session. Start Wireshark. Select the Edit: Preferences… menu item (or click the associated toolbar icon). Select “Capture” in the pane on the left. Then, select your usual network interface as the default. Disable (uncheck) “Capture packets in promiscuous mode.” This will limit packet capture to only those packets originating from or destined for your host. This is required for most wireless LAN adapters and is good etiquette for all types of adapters. Click on “OK” to save the changes and close the menu. You can also select a default network interface for the capture of packets. See Figure 1 for an example where a wireless LAN interface is selected.
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 2
This is the end of the preview. Sign up to access the rest of the document.

This note was uploaded on 09/24/2011 for the course ECE ECE4500 taught by Professor Kam during the Spring '10 term at Virginia Tech.

Page1 / 7

ECE4500_Project4 - ECE 4500: Fundamentals of Computer...

This preview shows document pages 1 - 2. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online