Network & Host Analysis: Network Observations


Overview/Description
Expected Duration
Lesson Objectives
Course Number
Expertise Level


Overview/Description

Knowing what goes on over a network requires a high-level picture of it. The ability to conceptualize your network's structure, capabilities, and events is essential to protecting it. In this course, you'll explore the concepts and tools required to identify and visualize your network components.

You'll work mostly with the open source network protocol analyzer, Wireshark. You'll start by displaying protocol hierarchies and identifying network endpoints. You'll then describe considerations for visualizing networks and create a network diagram using Visio.

Next, you'll outline network security assessment methods, recognize the use of baselines for network management, and carry out baseline activity monitoring. You'll also look at ways of capturing network data. Lastly, you'll explore how Wireshark combines with other tools such as Nmap, SSH, and firewalls.



Expected Duration (hours)
1.0

Lesson Objectives

Network & Host Analysis: Network Observations

  • discover the key concepts covered in this course
  • display the tree of protocol traffic captured by Wireshark
  • identify network endpoints from captured network traffic using Wireshark
  • describe considerations when visualizing network nodes
  • create a simple network diagram using Visio
  • outline effective approaches to assessing network security
  • recognize the use of various baselines for network management
  • work with baseline activity monitoring in Wireshark
  • describe the different capture engines used in Wireshark
  • create firewall rules based on Wireshark
  • detect Nmap scans using Wireshark
  • monitor traffic remotely using Wireshark and SSH tunneling
  • summarize the key concepts covered in this course

    • Course Number:
    it_cynthadj_03_enus

    Expertise Level
    Intermediate