04-14-2020 08:57 AM - last edited on 04-27-2020 10:43 PM by Hilda Arteaga
To participate in this event, please use the button below to ask your questions
Ask questions from Tuesday 14 to Friday, April 24, 2020
Dr. Moisés might not be able to answer each question due to the volume expected during this event. Remember that you can continue the conversation on the Networking category.
04-23-2020 10:04 AM
04-28-2020 05:26 AM
I encourage you to check DHCP by yourself. It is easy and you will learn a lot.
Open wireshark, turn off and on your NIC and filter the results using "dhcp" or "bootp" filter.
Simple like that.
04-23-2020 10:08 AM
04-28-2020 05:30 AM
Wireshark, TCPDump and other capture softwares read and show the Headers content.
The gold mine of Wireshark is that it processes this information almost in real time and display the analysis results in those informations between brackets.
For example: Wireshark reads the TCP sequence number and the size of the segment. So it calculates the next sequence number. This info will be displayed between brackets. Everything in bracket is NOT in headers.
Cheers
Moisés
04-23-2020 10:09 AM
04-28-2020 05:41 AM
Sure.
The simpler is "debug ip packet". It is similar to TCPDump in Linux.
The "monitor capture" is more sophisticated and capture can be saved in a pcap file (https://www.cisco.com/c/en/us/support/docs/ios-nx-os-software/ios-embedded-packet-capture/116045-productconfig-epc-00.html)
Ciscodump is an extcap tool that relys on Cisco EPC to allow a user to run a remote capture on a Cisco router in a SSH connection. The minimum IOS version supporting this feature is 12.4(20)T. More details can be found here: https://www.cisco.com/c/en/us/products/collateral/ios-nx-os-software/ios-embedded-packet-capture/datasheet_c78-502727.html
But, many times, with Cisco Netflow, we can do a better network diagnostic (https://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-netflow/index.html)
About the diagrams, please, explore Wireshark Statistics menu. It is awesome.
Cheers
Moisés
04-23-2020 10:09 AM
04-28-2020 05:42 AM
I don't know any tool that does this.
But the Wireshark front-end is very good. Maybe what you want can be done just with the display filters.
Also explore the Statistics and Analyze menus.
Cheers
Moisés
04-26-2020 07:27 PM
04-30-2020 08:18 PM
Dear @moises.nisenbaum
Thank you for sharing your time and knowledge with the community, we have learned lots.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide