Solved

Protocol Analayzer Understanding..

Posted on 2006-07-18
5
225 Views
Last Modified: 2010-03-05
Ok so i am new to using protocol analayzer i ahve a couple questsions for those that are expertise in it..

On which layer will will i be using to find whether information is being retransmitted ?

and

Which layer will i look to determine whether there is a routing problem ??

reason i ask this, is because i am trying to troubleshoot my network problem... between my current work area and our headquaters in a different city.. The data being transmitted from each other is taking twice as long as it usually did a week ago ? i was told to use a protocol analyzer to help further find the problem... well i am new to using analyzer so if anyone could help me answer these questions, would be greatly appreciated thanks..
0
Comment
Question by:Coupee36
  • 2
5 Comments
 
LVL 57

Expert Comment

by:giltjr
Comment Utility
Data retransmission can take place at many layers so the answer there is "It depends."

For routing problems, you don't need a protocol analyzer, you just need the ability to do traceroute (tracert in Windows) from source PC and the target PC.

What you want to look for in the the trace is the general packet flow between the two hosts.  You also need to know what protocol/application is being used to transmit the data.  Is it ftp, sftp, ftps, or SCP?

Even more generally typically you should see data going from the source to the target and ACK's everynow and then from the target to the source.  You want to look for delay's between the data and the ACK's.

0
 

Accepted Solution

by:
vodkamilkshake earned 63 total points
Comment Utility
You should use Ethereal, its a free network analyzer. It can detect and display many anomalies regarding TCP traffic and it shows pretty user friendly messages too. As far as which layer to look at is concerned, pay attention to source and destination addresseses in physical layer, and the same in tcp layer. Just go around with it a little bit and you will find alot of useful information.
0
 
LVL 57

Assisted Solution

by:giltjr
giltjr earned 62 total points
Comment Utility
Are you already using a analyzer?  If so which one?  If not you can use Ethereal as vodkamilkshake or its "replacement" Wireshark (http://www.wireshark.org)

0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Nothing in an HTTP request can be trusted, including HTTP headers and form data.  A form token is a tool that can be used to guard against request forgeries (CSRF).  This article shows an improved approach to form tokens, making it more difficult to…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now