NETW 310 Week 7 Lab Report Troubleshooting Network

NETW 310 Week 7 Lab Report Troubleshooting Network Problems
Teddy Ghannam
SECTION I  Using Wireshark, answer the questions below.
1. Show a screen shot of the frame where the SYN-ACK for TCP stream 0 appears. What frame is this in?( 4 points)
 
2.  How long from the time the client issued the initial SYN for stream 0 did it take the server to answer with the SYN-ACK? (4 points)
Which method did you use?  What was your calculation?
3. Notice that the client had to issue two initial SYNs as the first one did not elicit a response. 
4.  How long did it take the client to issue the ACK to the SYN-ACK for TCP stream 0?(4 points)
5. How long did it take the client to issue the first GET for stream 0 after the TCP 3-way handshake was completed?  Add in a screen shot of this with the HTTP expanded so you can see information about the GET.(4 points)
 
6.  Is this fast or slow?  NOTE:  What is fast or slow is not specifically discussed in the material for the week. Is a response in some ten-thousandths  of a second is seen as fast “enough” according to DeVry?  What do you think?  Justify your answer. (2 points)
7.  What is the window size sent by the client to the server in the first GET frame?  Not the calculated window size using the window scaling factor, the window size value.  Show a screen shot of where you found this answer.(4 points)
 
8.  As the client receives data does the window size get smaller, stay the same, or get bigger?(4 points)
9.  What do you conclude from this? Is the client being overloaded? Is it the source of any delays in the response seen by the user?( 2 points)
10. Examine the stream of frames now displayed. Does either end show a smaller and smaller window size as the frames go back and forth?( 2 points)
11. Examine the stream of frames are there any significant differences in the times during the back and forth between the client and the server?( 2 points)
12.  How many duplicate ACKs are there for stream index 0? What filter did you use to search for the dup acks?  Show a screen shot of your filter and results for full credit.(4 points)
 
13.  How many of these are between the client and the server?(4 points)
14.  Does this indicate a problem in the network? Yes or no? How do you justify your answer?(4 points)
SECTION II:( 10 points) Using the 100 Tips for Wireshark document from Laura Chappell, outline your favorite 5 tips and outline when and how you would use them to troubleshoot a network problem.  Write at least 3 sentences on each tip you select to profile.  Each outline is worth 2 points each.

SECTION III: Looking at security with wireshark. (10 points)
Write a short paragraph about what you see in this example.  What does this tell you about password security in general?  How does this profile what an unauthorized person using wireshark could capture?