Upload File

ostu - troubleshooting vpn with wireshark (by tony fortunato)

  • Home
  • Technology
  • OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)
10
© 2008 www.thetechfirm.com Wireshark QuickStart Tony Fortunato, Sr Network Specialist The Technology Firm Troubleshooting With A VPN Client

Upload: lovemytool

Post on 03-Nov-2014

29 views

Category:

Technology


0 download

Report

DESCRIPTION

Tony Fortunato is a Senior Network Specialist with experience in design, implementation, and troubleshooting of LAN/WAN/Wireless networks, desktops and servers since 1989. His background in financial networks includes design and implementation of trading floor networks. Tony has taught at local high schools, Colleges/Universities, Networld/Interop and many onsite private classroom settings to thousands of analysts.

TRANSCRIPT

Page 1: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

Wireshark QuickStart

Tony Fortunato, Sr Network SpecialistThe Technology Firm

Troubleshooting With A VPN Client

Page 2: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

What are you talking about?

In some cases you need to troubleshoot through a VPN connection Some analyzers just show you encrypted ‘mumbo jumbo’ (yes it’s a real word,

look it up) You need to see the real data being transferred To complicate things, you may need to do this using a wireless connection,

which some commercial analyzers don’t natively support And of course some VPN vendors create ‘virtual adapters’ to confuse you further

In this example, I’ll use Cisco’s VPN and Microsoft’s client, since I run into them often

Page 3: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

What People Typically Do

The logical approach would be to capture packets from your network interface. Unfortunately many VPN clients use their own interface In the screenshot below, I pinged the default gateway with the Cisco VPN client

connected, but don’t see any evidence of it

Page 4: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

TIP: Launch Wireshark Quickly and Easily

The easiest way to determine which adapter to use is to select Capture->Interfaces after you VPN in and continuously ping something

Page 5: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

Results

Now when you capture from the correct interface you can see all you data in clear text (if the application is in clear text)

In this example my pings are clearly visible

Page 6: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

Microsoft interface

For the Microsoft client, I used the same methodology to determine the correct interface.

Page 7: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

Microsoft Client Bonus

If you select the Microsoft Client and connect, you can analyze the login process.

Page 8: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

Wrong Microsoft Login Credentials

Page 9: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

Wireshark Training - QuickStart

Tony Fortunato, Sr Network SpecialistThe Technology Firm

Thank you

Page 10: OSTU - Troubleshooting VPN with Wireshark (by Tony Fortunato)

© 2008 www.thetechfirm.com

For additional educational videos on Open Source Network Tools, please click on the following …

http://www.lovemytool.com/blog/ostu.html

LoveMyTool.com – Community for Network Tools


Tony Fortunato - sharkfestus.wireshark.org · Tony Fortunato, Sr Network Specialist, The Technology Firm Certified Fluke Networks and Wireshark Instructor Website: A Senior Network

Wireshark User's Guide - Bad Requestjruela/DOC/Wireshark-user-guide-a4_v1.0.0.pdf · Wireshark User's Guide 27488 for Wireshark 1.0.0 ... Capture frame ... Wireshark's Lua API Reference

EESTI OSTU- JA TARNEAHELATE JUHTIMISE ÜHING (PROLOG)prolog.ee/wp-content/uploads/2015/10/III-Rahuldamata... · 2015-11-04 · EESTI OSTU- JA TARNEAHELATE JUHTIMISE ÜHING (PROLOG)

Übung - Anzeigen von Netzverkehr mit Wireshark · Wireshark kann heruntergeladen werden von . b. Klicken Sie auf Download Wireshark. Übung - Anzeigen von Netzwerkverkehr mit Wireshark

Fortunato Depero

OSTU: How to Start a Broadcast Analysis - Part One (Tony Fortunato)

Wireshark User's Guide - index-of.co.ukindex-of.co.uk/Security/packet-capture/wireshark/docs/... · 2019. 3. 7. · Wireshark User's Guide 26808 for Wireshark 1.0.0 Ulf Lamping, Richard

OSTU: tcping with Windows (by Tony Fortunato)

Ostu hidrobūves

Wireshark User's Guidejruela/DOC/Wireshark-user-guide-a4_v1.0.0.pdfWireshark's Lua API Reference Manual ... Capturing with tcpdump for viewing with Wireshark ... Wireshark User's Guide

Wireshark User's Guideschulz/pub/Rechnernetze/tools/wireshark/... · Wireshark User's Guide v1.11.3-rc1-1721-gdd4e5fc for Wireshark 1.11 Ulf Lamping, Richard Sharpe, NS Computer Software

Wireshark Deep packet inspection with Wireshark

OSTU - EasyCapture for Windows (by Tony Fortunato & Peter Ciuffreda)

Wireshark User's Guidepaginas.fe.up.pt/~jruela/DOC/Wireshark-user-guide-a4_v1.0.0.pdf · Wireshark User's Guide 27488 for Wireshark 1.0.0 Ulf Lamping, Richard Sharpe, NS Computer

Wireshark Kullanım Rehberi - exploit-db.comturkish]-wireshark... · Filter kısm ı6 7 1 ) Daha önce ... Wireshark –Adres Çözümlemenin Aktif Edilmesi Peki wireshark bu adres

Wireshark Tutorial - Southern Illinois University Carbondalecs441/lectures/Wireshark Tutorial.pdf · Getting Wireshark Wireshark for Windows and Mac OS X can be easily downloaded

Ostu Thresholding

LATVIJAS OSTU NOZARES ANALĪZE KONKURĒTSPĒJA UN … · Pasaules Banku par nozares analīzes veikšanu. Šī darba mērķis ir izanalizēt Latvijas lielāko ostu darbību un vadību

OSTU - hrPING QuickStart Part 2 (by Tony Fortunato & Peter Ciuffreda)

Fun with Wireshark - · PDF fileeditcap [-a ] ... •Compiled into Wireshark; very efficient •Lua dissector: ... Fun with Wireshark Author:

OSTU - Wireshark TCP Stream Graphs (by Ray Tompkins)

Wireshark User’s Guide - GNOMEftp.gnome.org/.../pub/network/monitoring/wireshark/docs/user-guide-a4.pdf · Wireshark User’s Guide For Wireshark 2.1 Ulf Lamping

OSTU - Customized Wireshark Graphs with Open Office (by Tony Fortunato)

Donatella Fortunato - Book

Fortunato 485

Tony Fortunato - Wireshark

Topo fortunato

OSTU: How to Start a Broadcast Analysis - Part Two (Tony Fortunato)

OSTU - Quickstart Guide for Wireshark (by Tony Fortunato)

06 VENANCIO FORTUNATO

WIRESHARK-FILTER(4) TheWireshark Network Analyzer ...fortega/fall16/cnt5415/labmaterial/reading/wireshark-filter...WIRESHARK-FILTER(4) TheWireshark Network Analyzer WIRESHARK-FILTER(4)

Fortunato 1

Aniver Fortunato HC

Wireshark User’s Guide - Yacer · Wireshark User’s Guide For Wireshark 2.1 ... Wireshark User’s Guide 9.6. LTE RLC Traffic Statistics ... Display Filter Macros

Wireshark Tutorial - George Mason University · Wireshark Tutorial INTRODUCTION The purpose of this document is to introduce the packet sniffer Wireshark. Wireshark would be used