Foundational TCP Analysis with Wireshark

TCP is a core protocol driving business applications, but is often a blind spot in IT organizations. A thorough understanding of TCP can speed up network and application troubleshooting, empowering engineers to quickly resolve problems.
Course info
Rating
(15)
Level
Intermediate
Updated
Mar 11, 2020
Duration
2h 7m
Table of contents
Description
Course info
Rating
(15)
Level
Intermediate
Updated
Mar 11, 2020
Duration
2h 7m
Description

"The network is slow!" "The application is broken!" "We are being hacked!" Sound familiar? In this course, Foundational TCP Analysis with Wireshark, you will gain the ability to troubleshoot and resolve network problems by harnessing the power of TCP. First, you will learn how TCP connections are established and maintained. Next, you will discover how data is retransmitted during data loss. Finally, you will explore how to quickly find, interpret, and resolve TCP problems using the Wireshark protocol analyzer. When you are finished with this course, you will have the skills and knowledge of the TCP protocol and Wireshark needed to hunt down network problems and resolve them for good.

About the author
About the author

Chris Greer is a network analyst for Packet Pioneer, delivering training and packet analysis consulting services to customers all over the world. He specializes in using Wireshark to combat network and application performance problems on networks of all sizes. Chris leverages his 20 years of practical experience in network monitoring, analysis, and troubleshooting to heighten the experience of any attendee to his interactive and energetic courses.

More from the author
Mastering TCP Analysis with Wireshark
Advanced
2h 21m
May 14, 2020
Analyzing Network Protocols with Wireshark
Intermediate
2h 7m
Dec 20, 2019
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi everyone. My name is Chris Greer, and welcome to my course, Foundational TCP Analysis with Wireshark. I'm a network analyst and have been capturing an interpreting problems with TCP and Wireshark for over 15 years. My passion is resolving problems with packets and helping others to learn the art of packet analysis too. The TCP protocol is responsible for supporting and delivering the services and applications that drive our businesses. But in most IT organizations, TCP is a bit of a blind spot. Network engineers often get blamed for slowness, application disconnects, and low throughput, when the real underlying culprit can be found with a solid understanding of TCP, I want to show you the fundamentals of this massively important protocol, which will help you to gain comfort capturing and interpreting it with Wireshark. This will help you to be a faster troubleshooter because you'll have the skills with TCP and Wireshark to isolate and resolve the root cause of slow performance and other pesky network problems. Some of the major topics that we'll cover with hands‑on exercises include: mastering the TCP handshake, understanding sequence and acknowledgement numbers, what to do about retransmissions and duplicate acknowledgments, and how to interpret TCP window problems. By the end of this course, you will be comfortable with filtering on TCP connections, interpreting TCP errors, and identifying the TCP header values, which will lead you to a root cause. Before beginning the course, you should be familiar with basic networking fundamentals and have a functional understanding of Wireshark. I hope you'll join me on this journey to learn how to dig into packets with the course, Fundamental TCP Analysis with Wireshark, here on Pluralsight.