Network Analysis Using Wireshark Chapter 08 the expert system

0 likes•354 views

This document discusses Wireshark's expert system for network analysis. It explains that the expert system can help understand error, warning, and note events seen in network traffic. Specific event types are covered like bad checksums, unknown dissectors, and TCP sequence/acknowledgment issues. The document encourages using the expert system for initial evaluation of network issues and provides contact information for the author to learn more.

Related topics:

Network Analysis Insights

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 1
Network analysis Using Wireshark
Lesson 8:
The Expert System

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 2
• By the end of this lesson, the participant will be able to:
▫ Understand Wireshark Expert System
▫ Understand events and severities
Lesson Objectives

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 3
yoram@ndi-com.com
For More lectures, Courses & Keynote Speaking
Contact Me to:

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 4
The Expert Info window and how to use it
for network troubleshooting
Error events and understanding them
Warnings events and understanding them
Notes events and understanding them
Case studies
Chapter Content
“Try not to become a man of success.
Rather become a man of value.“
Albert Einstein

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 5
The Expert Info Window

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 6
The Expert Infos window and how to use
it for network troubleshooting
Error events and understanding them
Warnings events and understanding them
Notes events and understanding them
Case studies
Chapter Content
"If you really look closely, most
overnight successes took a long time.“
Steve Jobs

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 7
Error Events:
Bad checksum, Malformed packet
Erorrs: Errors
in Layers 1-7

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 8
The Expert Infos window and how to use
it for network troubleshooting
Error events and understanding them
Warnings events and understanding them
Notes events and understanding them
Case studies
Chapter Content
"There are no secrets to success. It is the
result of preparation, hard work, and
learning from failure.“
Colin Powell

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 9
Warning Events:
Unknown dissector, Window illegal window shift

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 10
Warning Events:
TCP Resets, TCP window issue

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 11
The Expert Infos window and how to use
it for network troubleshooting
Error events and understanding them
Warnings events and understanding them
Notes events and understanding them
Case studies
Chapter Content
"There are no secrets to success. It is
the result of preparation, hard work, and
learning from failure.“
Colin Powell

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 12
Note Events:
TCP SEQ/ACK Issues

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 13
Summary
• In this lesson we talked about:
▫ The expert system and what is the information to get from it
▫ How to use the expert system for initial evaluation of the network
Thanks for your time
Yoram Orzach
yoram@ndi-com.com

Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 yoram@ndi-com.com
Network analysis using Wireshark V2 yoram@ndi-com.comPage 14
yoram@ndi-com.com
For More lectures, Courses & Keynote Speaking
Contact Me to:

Ad

Recommended

PDF

lesson 2- Network analysis Using Wireshark introduction to cellular feb-2017Yoram Orzach

PDF

Network Analysis Using Wireshark Chapter 09 ethernet and lan switchingYoram Orzach

PDF

Network analysis Using Wireshark Lesson 3: locating wiresharkYoram Orzach

PDF

Network analysis Using Wireshark Lesson 1- introduction to network troublesho...Yoram Orzach

PDF

Network Analysis Using Wireshark -Chapter 6- basic statistics toolsYoram Orzach

PDF

Network analysis Using Wireshark Lesson 12 - bandwidth and delay issuesYoram Orzach

PDF

Ch 08 -- Ethernet & LAN Switching TroubleshootingYoram Orzach

PDF

lesson 7- Network analysis Using Wireshark - advanced statistics toolsYoram Orzach

PDF

Network Analysis Using Wireshark Jan 18- seminar Yoram Orzach

PDF

Network Analysis using Wireshark 5: display filtersYoram Orzach

PDF

Network analysis Using Wireshark 4: Capture FiltersYoram Orzach

PDF

Network Analysis Using Wireshark -10- arp and ip analysis Yoram Orzach

PDF

Network Analysis Using Wireshark 1Yoram Orzach

PDF

Network analysis Using Wireshark Lesson 11: TCP and UDP AnalysisYoram Orzach

PDF

Ch 07 -- The Expert SystemYoram Orzach

PDF

Ch 01 --- introduction to sdn-nfvYoram Orzach

PDF

Ch 06 -- Bandwidth Delay and Jitter IssuesYoram Orzach

PPT

Wireshark BasicsYoram Orzach

PPT

Wireshark Inroduction Li Inmhaviv

PDF

Wireshark - BasicsYoram Orzach

PDF

Wireshark course, Ch 02: Introduction to wiresharkYoram Orzach

PPTX

Network Packet Analysis with WiresharkJim Gilsinn

PPTX

Wireshark network analysing softwaredharmesh nakum

PPTX

Network monitoring systemMyPresentations Services

PPTX

Packet analyzing with wireshark-basic of packet analyzing - Episode_01Dhananja Kariyawasam

PDF

Wireshark Traffic AnalysisDavid Sweigert

PPTX

Packet analysis using wiresharkBasaveswar Kureti

PPT

WiresharkVijay kumar

PDF

How to Hack WiFi on Windows Vrushank Narola

PDF

Networkaware Source Coding And Communication 1st Edition Nima Sarshar Et Alqanlinassih

More Related Content

PDF

lesson 2- Network analysis Using Wireshark introduction to cellular feb-2017Yoram Orzach

PDF

Network Analysis Using Wireshark Chapter 09 ethernet and lan switchingYoram Orzach

PDF

Network analysis Using Wireshark Lesson 3: locating wiresharkYoram Orzach

PDF

Network analysis Using Wireshark Lesson 1- introduction to network troublesho...Yoram Orzach

PDF

Network Analysis Using Wireshark -Chapter 6- basic statistics toolsYoram Orzach

PDF

Network analysis Using Wireshark Lesson 12 - bandwidth and delay issuesYoram Orzach

PDF

Ch 08 -- Ethernet & LAN Switching TroubleshootingYoram Orzach

PDF

lesson 7- Network analysis Using Wireshark - advanced statistics toolsYoram Orzach

lesson 2- Network analysis Using Wireshark introduction to cellular feb-2017Yoram Orzach

Network Analysis Using Wireshark Chapter 09 ethernet and lan switchingYoram Orzach

Network analysis Using Wireshark Lesson 3: locating wiresharkYoram Orzach

Network analysis Using Wireshark Lesson 1- introduction to network troublesho...Yoram Orzach

Network Analysis Using Wireshark -Chapter 6- basic statistics toolsYoram Orzach

Network analysis Using Wireshark Lesson 12 - bandwidth and delay issuesYoram Orzach

Ch 08 -- Ethernet & LAN Switching TroubleshootingYoram Orzach

lesson 7- Network analysis Using Wireshark - advanced statistics toolsYoram Orzach

What's hot (20)

PDF

Network Analysis Using Wireshark Jan 18- seminar Yoram Orzach

PDF

Network Analysis using Wireshark 5: display filtersYoram Orzach

PDF

Network analysis Using Wireshark 4: Capture FiltersYoram Orzach

PDF

Network Analysis Using Wireshark -10- arp and ip analysis Yoram Orzach

PDF

Network Analysis Using Wireshark 1Yoram Orzach

PDF

Network analysis Using Wireshark Lesson 11: TCP and UDP AnalysisYoram Orzach

PDF

Ch 07 -- The Expert SystemYoram Orzach

PDF

Ch 01 --- introduction to sdn-nfvYoram Orzach

PDF

Ch 06 -- Bandwidth Delay and Jitter IssuesYoram Orzach

PPT

Wireshark BasicsYoram Orzach

PPT

Wireshark Inroduction Li Inmhaviv

PDF

Wireshark - BasicsYoram Orzach

PDF

Wireshark course, Ch 02: Introduction to wiresharkYoram Orzach

PPTX

Network Packet Analysis with WiresharkJim Gilsinn

PPTX

Wireshark network analysing softwaredharmesh nakum

PPTX

Network monitoring systemMyPresentations Services

PPTX

Packet analyzing with wireshark-basic of packet analyzing - Episode_01Dhananja Kariyawasam

PDF

Wireshark Traffic AnalysisDavid Sweigert

PPTX

Packet analysis using wiresharkBasaveswar Kureti

PPT

WiresharkVijay kumar

Network Analysis Using Wireshark Jan 18- seminar Yoram Orzach

Network Analysis using Wireshark 5: display filtersYoram Orzach

Network analysis Using Wireshark 4: Capture FiltersYoram Orzach

Network Analysis Using Wireshark -10- arp and ip analysis Yoram Orzach

Network Analysis Using Wireshark 1Yoram Orzach

Network analysis Using Wireshark Lesson 11: TCP and UDP AnalysisYoram Orzach

Ch 07 -- The Expert SystemYoram Orzach

Ch 01 --- introduction to sdn-nfvYoram Orzach

Ch 06 -- Bandwidth Delay and Jitter IssuesYoram Orzach

Wireshark BasicsYoram Orzach

Wireshark Inroduction Li Inmhaviv

Wireshark - BasicsYoram Orzach

Wireshark course, Ch 02: Introduction to wiresharkYoram Orzach

Network Packet Analysis with WiresharkJim Gilsinn

Wireshark network analysing softwaredharmesh nakum

Network monitoring systemMyPresentations Services

Packet analyzing with wireshark-basic of packet analyzing - Episode_01Dhananja Kariyawasam

Wireshark Traffic AnalysisDavid Sweigert

Packet analysis using wiresharkBasaveswar Kureti

WiresharkVijay kumar

Ad

Similar to Network Analysis Using Wireshark Chapter 08 the expert system (20)

PDF

How to Hack WiFi on Windows Vrushank Narola

PDF

Networkaware Source Coding And Communication 1st Edition Nima Sarshar Et Alqanlinassih

PDF

Laporan Praktikum Keamanan Siber - Tugas 7 -Kelas C - Kelompok 3.pdfIGedeArieYogantaraSu

PPTX

Ntc 409 rank focus dreams ntc409rank.comchandika22

PDF

W4 profinet frame analysis, peter thomasPROFIBUS and PROFINET InternationaI - PI UK

PPTX

How Hack WiFi through Aircrack-ng in Kali Linux Cyber SecurityAhmad Yar

PPTX

Ntc 409 rank dreams come true ntc409rank.comchandika159

PPTX

Managing a Widely Distributed NetworkSavvius, Inc

DOCX

ebook converter DEMO Watermarks.docxtidwellveronique

PDF

Wardiving and Network-SniffingAn Dy L

PPT

Struts2 Course: IntroductionJavaEE Trainers

PDF

Wireless Project Using CAPsMANAidan Venn MSc

PDF

Deploying And Managing Ip Over Wdm Networks Joan Serrat Alex Galisbosenbunal9v

PDF

Java Cryptography Extensions Practical Guide for Programmers The Practical Gu...degnerjugers

DOCX

Question 1 Which of the following statements is true regarding Wir.docxJUST36

PDF

Fundamentals of network hackingPranshu Pareek

PPTX

Wireless Pentesting: It's more than cracking WEPJoe McCray

PDF

Program dinamik jaringanIrwan Endrayanto

PDF

International Conference On Electrical and Electronics Engineeringanchalsinghdm

DOCX

20 questions , multiple choiceQuestion 11.Which of the fol.docxvickeryr87

How to Hack WiFi on Windows Vrushank Narola

Networkaware Source Coding And Communication 1st Edition Nima Sarshar Et Alqanlinassih

Laporan Praktikum Keamanan Siber - Tugas 7 -Kelas C - Kelompok 3.pdfIGedeArieYogantaraSu

Ntc 409 rank focus dreams ntc409rank.comchandika22

W4 profinet frame analysis, peter thomasPROFIBUS and PROFINET InternationaI - PI UK

How Hack WiFi through Aircrack-ng in Kali Linux Cyber SecurityAhmad Yar

Ntc 409 rank dreams come true ntc409rank.comchandika159

Managing a Widely Distributed NetworkSavvius, Inc

ebook converter DEMO Watermarks.docxtidwellveronique

Wardiving and Network-SniffingAn Dy L

Struts2 Course: IntroductionJavaEE Trainers

Wireless Project Using CAPsMANAidan Venn MSc

Deploying And Managing Ip Over Wdm Networks Joan Serrat Alex Galisbosenbunal9v

Java Cryptography Extensions Practical Guide for Programmers The Practical Gu...degnerjugers

Question 1 Which of the following statements is true regarding Wir.docxJUST36

Fundamentals of network hackingPranshu Pareek

Wireless Pentesting: It's more than cracking WEPJoe McCray

Program dinamik jaringanIrwan Endrayanto

International Conference On Electrical and Electronics Engineeringanchalsinghdm

20 questions , multiple choiceQuestion 11.Which of the fol.docxvickeryr87

Ad

More from Yoram Orzach (9)

PDF

Ch 05 --- nfv basicsYoram Orzach

PDF

Ch 04 --- sdn deployment modelsYoram Orzach

PDF

Ch 03 --- the OpenFlow protocolsYoram Orzach

PDF

Ch 02 --- sdn and openflow architectureYoram Orzach

PDF

Ch 09 -- ARP & IP AnalysisYoram Orzach

PDF

Wireshark course, Ch 05: Advanced statistics toolsYoram Orzach

PDF

Wireshark course, Ch 03: Capture and display filtersYoram Orzach

PDF

Introduction To Cellular NetworksYoram Orzach

PPTX

Introduction To Cellular And Wireless NetworksYoram Orzach

Ch 05 --- nfv basicsYoram Orzach

Ch 04 --- sdn deployment modelsYoram Orzach

Ch 03 --- the OpenFlow protocolsYoram Orzach

Ch 02 --- sdn and openflow architectureYoram Orzach

Ch 09 -- ARP & IP AnalysisYoram Orzach

Wireshark course, Ch 05: Advanced statistics toolsYoram Orzach

Wireshark course, Ch 03: Capture and display filtersYoram Orzach

Introduction To Cellular NetworksYoram Orzach

Introduction To Cellular And Wireless NetworksYoram Orzach

Recently uploaded (20)

PPTX

Coupa-Overview _Assumptions presentationannapureddyn

PDF

Accelerating Oracle Database 23ai Troubleshooting with Oracle AHF Fleet Insig...Sandesh Rao

PPTX

The-Ethical-Hackers-Imperative-Safeguarding-the-Digital-Frontier.pptxsujalchauhan1305

PPT

Coupa-Kickoff-Meeting-Template presentaiannapureddyn

PDF

BLW VOCATIONAL TRAINING SUMMER INTERNSHIP REPORTcodernjn73

PDF

Security features in Dell, HP, and Lenovo PC systems: A research-based compar...Principled Technologies

PPTX

cloud computing vai.pptx for the projectvaibhavdobariyal79

PDF

Google I/O Extended 2025 Baku - all pptsHusseinMalikMammadli

PPTX

AI and Robotics for Human Well-being.pptxJAYMIN SUTHAR

PDF

MASTERDECK GRAPHSUMMIT SYDNEY (Public).pdfNeo4j

PDF

AI Unleashed - Shaping the Future -Starting Today - AIOUG Yatra 2025 - For Co...Sandesh Rao

PDF

Research-Fundamentals-and-Topic-Development.pdfayesha butalia

PDF

CIFDAQ's Market Wrap : Bears Back in Control?CIFDAQ

PDF

Advances in Ultra High Voltage (UHV) Transmission and Distribution Systems.pdfNabajyoti Banik

PDF

Cloud-Migration-Best-Practices-A-Practical-Guide-to-AWS-Azure-and-Google-Clou...Artjoker Software Development Company

PDF

How-Cloud-Computing-Impacts-Businesses-in-2025-and-Beyond.pdfArtjoker Software Development Company

PDF

Structs to JSON: How Go Powers REST APIsEmily Achieng

PDF

How Open Source Changed My Career by abdelrahman ismaila0m0rajab1

PDF

A Day in the Life of Location Data - Turning Where into How.pdfPrecisely

PPTX

OA presentation.pptx OA presentation.pptxpateldhruv002338

Coupa-Overview _Assumptions presentationannapureddyn

Accelerating Oracle Database 23ai Troubleshooting with Oracle AHF Fleet Insig...Sandesh Rao

The-Ethical-Hackers-Imperative-Safeguarding-the-Digital-Frontier.pptxsujalchauhan1305

Coupa-Kickoff-Meeting-Template presentaiannapureddyn

BLW VOCATIONAL TRAINING SUMMER INTERNSHIP REPORTcodernjn73

Security features in Dell, HP, and Lenovo PC systems: A research-based compar...Principled Technologies

cloud computing vai.pptx for the projectvaibhavdobariyal79

Google I/O Extended 2025 Baku - all pptsHusseinMalikMammadli

AI and Robotics for Human Well-being.pptxJAYMIN SUTHAR

MASTERDECK GRAPHSUMMIT SYDNEY (Public).pdfNeo4j

AI Unleashed - Shaping the Future -Starting Today - AIOUG Yatra 2025 - For Co...Sandesh Rao

Research-Fundamentals-and-Topic-Development.pdfayesha butalia

CIFDAQ's Market Wrap : Bears Back in Control?CIFDAQ

Advances in Ultra High Voltage (UHV) Transmission and Distribution Systems.pdfNabajyoti Banik

Cloud-Migration-Best-Practices-A-Practical-Guide-to-AWS-Azure-and-Google-Clou...Artjoker Software Development Company

How-Cloud-Computing-Impacts-Businesses-in-2025-and-Beyond.pdfArtjoker Software Development Company

Structs to JSON: How Go Powers REST APIsEmily Achieng

How Open Source Changed My Career by abdelrahman ismaila0m0rajab1

A Day in the Life of Location Data - Turning Where into How.pdfPrecisely

OA presentation.pptx OA presentation.pptxpateldhruv002338

Network Analysis Using Wireshark Chapter 08 the expert system

1. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 1 Network analysis Using Wireshark Lesson 8: The Expert System

2. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 2 • By the end of this lesson, the participant will be able to: ▫ Understand Wireshark Expert System ▫ Understand events and severities Lesson Objectives

3. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 3 [email protected] For More lectures, Courses & Keynote Speaking Contact Me to:

4. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 4 The Expert Info window and how to use it for network troubleshooting Error events and understanding them Warnings events and understanding them Notes events and understanding them Case studies Chapter Content “Try not to become a man of success. Rather become a man of value.“ Albert Einstein

5. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 5 The Expert Info Window

6. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 6 The Expert Infos window and how to use it for network troubleshooting Error events and understanding them Warnings events and understanding them Notes events and understanding them Case studies Chapter Content "If you really look closely, most overnight successes took a long time.“ Steve Jobs

7. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 7 Error Events: Bad checksum, Malformed packet Erorrs: Errors in Layers 1-7

8. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 8 The Expert Infos window and how to use it for network troubleshooting Error events and understanding them Warnings events and understanding them Notes events and understanding them Case studies Chapter Content "There are no secrets to success. It is the result of preparation, hard work, and learning from failure.“ Colin Powell

9. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 9 Warning Events: Unknown dissector, Window illegal window shift

10. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 10 Warning Events: TCP Resets, TCP window issue

11. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 11 The Expert Infos window and how to use it for network troubleshooting Error events and understanding them Warnings events and understanding them Notes events and understanding them Case studies Chapter Content "There are no secrets to success. It is the result of preparation, hard work, and learning from failure.“ Colin Powell

12. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 12 Note Events: TCP SEQ/ACK Issues

13. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 13 Summary • In this lesson we talked about: ▫ The expert system and what is the information to get from it ▫ How to use the expert system for initial evaluation of the network Thanks for your time Yoram Orzach [email protected]

14. Network Analysis Using Wireshark Version 2Network Analysis using Wireshark V.2 [email protected] Network analysis using Wireshark V2 [email protected] 14 [email protected] For More lectures, Courses & Keynote Speaking Contact Me to: