SlideShare a Scribd company logo

ネットワークに流れるパケットをのぞいてみよう

Mutsumi IWAISHI
Mutsumi IWAISHI

第12回山陰ITPro勉強会で行ったWiresharkのハンズオンに使用したスライドです。

TechnologyEducation
1 of 64
ISOL  
ISOL •  •  Wireshark • 
ISOL  
ISOL •  •  • 
ISOL OSI  Layer7 •  Web html h2p ntp End-­‐‑End TCP UDP IP IPX ieee802.3X ieee801.11X UTP
ISOL BDU) Tcp,udp IP Mac HUB
ISOL •  1 o  •  2 o MAC •  3 o IP
ISOL TCP/IP TCP/IP Wi-­‐‑Fi Ethernet
ISOL OSI
ISOL tcp/ip •  tcp/ip o  o  tcp ip o  tcp/ip udp o  ip o  tcp udp ip tcp(udp)/ip
ISOL tcp udp •  TCP o  o  o  o  o  3-Way •  UDP o  o  o  o 
ISOL
ISOL HUB C A B C D
ISOL HUB MAC C A B C D
ISOL IP C A B C D
ISOL •  •  • 
ISOL
ISOL •  •  o  o  o  o  o 
ISOL •  Wireshark o  GUI o  o  OS •  tcpdump o  CUI o  BSD Linux o  CUI •  Sniffer/Netasyst o  o  Windows Windows
ISOL •  o  •  o  L1 HUB o  L2-SW
ISOL SW SW SW SW SW SW SW
ISOL •  •  •  •  • 
ISOL •  Wireshark •  • 
ISOL Wireshark  
ISOL wireshark.org •    •  GPL-­‐‑OSS •  Ethereal   •      h4p://www.wireshark.org/
ISOL Wireshark
ISOL Wireshark •  OSS GPL •  0 •  Windows Mac Linux,BSD •  GUI •  Windows USB-Portable
ISOL SW SW SW SW SW
ISOL •  Wireshark • 
ISOL •  •  PC HDD ID
ISOL •  o  Capture stop •  o  File save
ISOL •  Filter •  o  o  IP o  MAC o  o  o 
ISOL
ISOL IP •  Filter ip.addr==x.x.x.x Apply Enter •  IP
ISOL MAC •  Filter eth.addr==xx:xx:xx:xx:xx:xx Apply •  MAC
ISOL •  Filter tcp.port==xxx Apply •  tcp xxx
ISOL •  Filter Expression o  Expression… o  Field name Relation Value OK o  Apply •  IP 192.168.2.1 Field name: ip.src IPv4 Relation: == Value: 192.168.2.1
ISOL •  and(&&) or(||) •  Range • 
ISOL
ISOL  
ISOL •  172.16.200.200/24 •  PC 172.16.200.xxx/24(DHCP) •  DNS 172.16.200.200(DHCP) •  httpd(https ),dns,sshd,telnetd,smtpd,pop3d •  user1,user2,user3,user4, • 
ISOL h2p •  Web •  Wireshark LAN •  http://testsv.sitw.com/ • 
ISOL Tcp  3way-­‐‑handshack
ISOL h2p h2ps •  https://testsv.sitw.com/ •  o  o  http
ISOL GET POST •  http://testsv.sitw.com/gettest.html web •  http://testsv.sitw.com/posttest.html web
ISOL BASIC •  BASIC •  •  URL http://testsv.sitw.com/basic/ User: sitw Pass: sitw
ISOL Digest •  Digest •  URL http://testsv.sitw.com/digest/ User: sitw Pass: sitw
ISOL •  • 
ISOL
ISOL •  telnet ssh •  DNS •  PING •  smtp smtp-auth pop3 imap4
ISOL
ISOL •  • 
ISOL •  •  Flow Graph o  Statistics Flow Graph o  o  IP o 
ISOL •  •  Follow TCP Stream o  Analyze Follow TCP Stream o  o  udp Follow UDP Stream
ISOL •  •  Expert infos o  Analyze Expert info Composite o  Error Warning Notes o  Chat tcp
ISOL •  •  IO Graph o  Statistics IO Graph o  Filter
ISOL •  •  Protocol Hierarchy o  Statistics Protocol Hierarchy o 
ISOL •  •  • 
ISOL •  o  Capture Options Capture File o  Use multiple files •  Proxy http Decode As o  Analyze Decode As o 
ISOL
ISOL Q !!w •  o  www.yahoo.co.jp o  IP o  o  DNS •  o  DHCP o  o  DNS
ISOL Q: •  o  o  o  DNS •  o  o  o  o  o 
ISOL Packet Black Hole
ISOL

Recommended

Implementing The Breakout
Implementing The BreakoutImplementing The Breakout
Implementing The BreakoutNeil Giarratana
 
Vurgu
VurguVurgu
Vurguyardimt
 
Selling You & Your Services Drupalcon 2009
Selling You & Your Services Drupalcon 2009Selling You & Your Services Drupalcon 2009
Selling You & Your Services Drupalcon 2009Neil Giarratana
 
Comp Plan Dvd[1]
Comp Plan Dvd[1]Comp Plan Dvd[1]
Comp Plan Dvd[1]skyallianz
 
Personal Digital Vip
Personal Digital VipPersonal Digital Vip
Personal Digital VipInnovation Marketing
 
New Horizons Summer 2009 Presentation
New Horizons Summer 2009 PresentationNew Horizons Summer 2009 Presentation
New Horizons Summer 2009 Presentation4orphans
 
Ekler
EklerEkler
Ekleryardimt
 
ePortfolio Presentation.Student Success Assessment Summit 06232009 Ingman
ePortfolio Presentation.Student Success Assessment Summit 06232009 IngmanePortfolio Presentation.Student Success Assessment Summit 06232009 Ingman
ePortfolio Presentation.Student Success Assessment Summit 06232009 IngmanEd Ingman
 

Recommended

Implementing The Breakout
Implementing The BreakoutImplementing The Breakout
Implementing The BreakoutNeil Giarratana
 
Vurgu
VurguVurgu
Vurguyardimt
 
Selling You & Your Services Drupalcon 2009
Selling You & Your Services Drupalcon 2009Selling You & Your Services Drupalcon 2009
Selling You & Your Services Drupalcon 2009Neil Giarratana
 
Comp Plan Dvd[1]
Comp Plan Dvd[1]Comp Plan Dvd[1]
Comp Plan Dvd[1]skyallianz
 
Personal Digital Vip
Personal Digital VipPersonal Digital Vip
Personal Digital VipInnovation Marketing
 
New Horizons Summer 2009 Presentation
New Horizons Summer 2009 PresentationNew Horizons Summer 2009 Presentation
New Horizons Summer 2009 Presentation4orphans
 
Ekler
EklerEkler
Ekleryardimt
 
ePortfolio Presentation.Student Success Assessment Summit 06232009 Ingman
ePortfolio Presentation.Student Success Assessment Summit 06232009 IngmanePortfolio Presentation.Student Success Assessment Summit 06232009 Ingman
ePortfolio Presentation.Student Success Assessment Summit 06232009 IngmanEd Ingman
 
Ses Olaylari Talikulekoglu
Ses Olaylari TalikulekogluSes Olaylari Talikulekoglu
Ses Olaylari Talikulekogluyardimt
 
Kelime çEşItleri
Kelime çEşItleriKelime çEşItleri
Kelime çEşItleriyardimt
 
Zamirler
ZamirlerZamirler
Zamirleryardimt
 
IVC Engages 21st Century
IVC Engages 21st CenturyIVC Engages 21st Century
IVC Engages 21st CenturyRural Hall School - Distance Learning
 
Ses Bilgisi-Ses Olayları
Ses Bilgisi-Ses OlaylarıSes Bilgisi-Ses Olayları
Ses Bilgisi-Ses Olaylarıyardimt
 
Paragrafın Anlam Yönü
Paragrafın Anlam YönüParagrafın Anlam Yönü
Paragrafın Anlam Yönüyardimt
 
9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...
9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...
9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...Gilbert Direct Marketing, Inc.
 
Camilles Work
Camilles WorkCamilles Work
Camilles Workstowconn
 
A Mi Allen
A Mi AllenA Mi Allen
A Mi Allenthaice
 
Steps to change address online.
Steps to change address online.Steps to change address online.
Steps to change address online.Wassim Merheby
 
The immutable law of social media #REALationships #smdaysfl 2015
The immutable law of social media #REALationships #smdaysfl 2015The immutable law of social media #REALationships #smdaysfl 2015
The immutable law of social media #REALationships #smdaysfl 2015Gilbert Direct Marketing, Inc.
 
Merita Citit iti multumeste
Merita Citit iti multumesteMerita Citit iti multumeste
Merita Citit iti multumesteCarla Alman
 
5. Kompozsyon
5. Kompozsyon5. Kompozsyon
5. Kompozsyonyardimt
 
SöZcüKte Anlam
SöZcüKte AnlamSöZcüKte Anlam
SöZcüKte Anlamyardimt
 
Fiiller
FiillerFiiller
Fiilleryardimt
 
Sample OBOW exam
Sample OBOW examSample OBOW exam
Sample OBOW examJeremy Williams
 
「儲かるWiki」江渡浩一郎
「儲かるWiki」江渡浩一郎「儲かるWiki」江渡浩一郎
「儲かるWiki」江渡浩一郎toRuby
 
F Ler
F LerF Ler
F Leryardimt
 
Group Profile
Group ProfileGroup Profile
Group Profileajaybc
 
How would we recognise a truly sustainable enterprise if we saw one?
How would we recognise a truly sustainable enterprise if we saw one?How would we recognise a truly sustainable enterprise if we saw one?
How would we recognise a truly sustainable enterprise if we saw one?Jeremy Williams
 
DNSって結局何?って人向けのRoute53の話など
DNSって結局何?って人向けのRoute53の話などDNSって結局何?って人向けのRoute53の話など
DNSって結局何?って人向けのRoute53の話などMutsumi IWAISHI
 
アプリ開発検証はLXC+Ansibleで楽ちんにやろう!
アプリ開発検証はLXC+Ansibleで楽ちんにやろう!アプリ開発検証はLXC+Ansibleで楽ちんにやろう!
アプリ開発検証はLXC+Ansibleで楽ちんにやろう!Mutsumi IWAISHI
 

More Related Content

Viewers also liked

Ses Olaylari Talikulekoglu
Ses Olaylari TalikulekogluSes Olaylari Talikulekoglu
Ses Olaylari Talikulekogluyardimt
 
Kelime çEşItleri
Kelime çEşItleriKelime çEşItleri
Kelime çEşItleriyardimt
 
Zamirler
ZamirlerZamirler
Zamirleryardimt
 
Ses Bilgisi-Ses Olayları
Ses Bilgisi-Ses OlaylarıSes Bilgisi-Ses Olayları
Ses Bilgisi-Ses Olaylarıyardimt
 
Paragrafın Anlam Yönü
Paragrafın Anlam YönüParagrafın Anlam Yönü
Paragrafın Anlam Yönüyardimt
 
9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...
9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...
9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...Gilbert Direct Marketing, Inc.
 
Camilles Work
Camilles WorkCamilles Work
Camilles Workstowconn
 
A Mi Allen
A Mi AllenA Mi Allen
A Mi Allenthaice
 
Steps to change address online.
Steps to change address online.Steps to change address online.
Steps to change address online.Wassim Merheby
 
The immutable law of social media #REALationships #smdaysfl 2015
The immutable law of social media #REALationships #smdaysfl 2015The immutable law of social media #REALationships #smdaysfl 2015
The immutable law of social media #REALationships #smdaysfl 2015Gilbert Direct Marketing, Inc.
 
Merita Citit iti multumeste
Merita Citit iti multumesteMerita Citit iti multumeste
Merita Citit iti multumesteCarla Alman
 
5. Kompozsyon
5. Kompozsyon5. Kompozsyon
5. Kompozsyonyardimt
 
SöZcüKte Anlam
SöZcüKte AnlamSöZcüKte Anlam
SöZcüKte Anlamyardimt
 
「儲かるWiki」江渡浩一郎
「儲かるWiki」江渡浩一郎「儲かるWiki」江渡浩一郎
「儲かるWiki」江渡浩一郎toRuby
 
Group Profile
Group ProfileGroup Profile
Group Profileajaybc
 
How would we recognise a truly sustainable enterprise if we saw one?
How would we recognise a truly sustainable enterprise if we saw one?How would we recognise a truly sustainable enterprise if we saw one?
How would we recognise a truly sustainable enterprise if we saw one?Jeremy Williams
 

Viewers also liked (20)

Ses Olaylari Talikulekoglu
Ses Olaylari TalikulekogluSes Olaylari Talikulekoglu
Ses Olaylari Talikulekoglu
 
Kelime çEşItleri
Kelime çEşItleriKelime çEşItleri
Kelime çEşItleri
 
Zamirler
ZamirlerZamirler
Zamirler
 
IVC Engages 21st Century
IVC Engages 21st CenturyIVC Engages 21st Century
IVC Engages 21st Century
 
Ses Bilgisi-Ses Olayları
Ses Bilgisi-Ses OlaylarıSes Bilgisi-Ses Olayları
Ses Bilgisi-Ses Olayları
 
Paragrafın Anlam Yönü
Paragrafın Anlam YönüParagrafın Anlam Yönü
Paragrafın Anlam Yönü
 
9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...
9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...
9 immutable Laws Of Social Media Marketing Presentation 2014 full version for...
 
Camilles Work
Camilles WorkCamilles Work
Camilles Work
 
A Mi Allen
A Mi AllenA Mi Allen
A Mi Allen
 
Steps to change address online.
Steps to change address online.Steps to change address online.
Steps to change address online.
 
The immutable law of social media #REALationships #smdaysfl 2015
The immutable law of social media #REALationships #smdaysfl 2015The immutable law of social media #REALationships #smdaysfl 2015
The immutable law of social media #REALationships #smdaysfl 2015
 
Merita Citit iti multumeste
Merita Citit iti multumesteMerita Citit iti multumeste
Merita Citit iti multumeste
 
5. Kompozsyon
5. Kompozsyon5. Kompozsyon
5. Kompozsyon
 
SöZcüKte Anlam
SöZcüKte AnlamSöZcüKte Anlam
SöZcüKte Anlam
 
Fiiller
FiillerFiiller
Fiiller
 
Sample OBOW exam
Sample OBOW examSample OBOW exam
Sample OBOW exam
 
「儲かるWiki」江渡浩一郎
「儲かるWiki」江渡浩一郎「儲かるWiki」江渡浩一郎
「儲かるWiki」江渡浩一郎
 
F Ler
F LerF Ler
F Ler
 
Group Profile
Group ProfileGroup Profile
Group Profile
 
How would we recognise a truly sustainable enterprise if we saw one?
How would we recognise a truly sustainable enterprise if we saw one?How would we recognise a truly sustainable enterprise if we saw one?
How would we recognise a truly sustainable enterprise if we saw one?
 

More from Mutsumi IWAISHI

DNSって結局何?って人向けのRoute53の話など
DNSって結局何?って人向けのRoute53の話などDNSって結局何?って人向けのRoute53の話など
DNSって結局何?って人向けのRoute53の話などMutsumi IWAISHI
 
アプリ開発検証はLXC+Ansibleで楽ちんにやろう!
アプリ開発検証はLXC+Ansibleで楽ちんにやろう!アプリ開発検証はLXC+Ansibleで楽ちんにやろう!
アプリ開発検証はLXC+Ansibleで楽ちんにやろう!Mutsumi IWAISHI
 
複数Linuxサーバ構成の検証? それ1インスタンスでできるよ!
複数Linuxサーバ構成の検証? それ1インスタンスでできるよ!複数Linuxサーバ構成の検証? それ1インスタンスでできるよ!
複数Linuxサーバ構成の検証? それ1インスタンスでできるよ!Mutsumi IWAISHI
 
ファーエンドテクノロジーのサービスを支えるOSS
ファーエンドテクノロジーのサービスを支えるOSSファーエンドテクノロジーのサービスを支えるOSS
ファーエンドテクノロジーのサービスを支えるOSSMutsumi IWAISHI
 
いろいろ引き出し作って見ました
いろいろ引き出し作って見ましたいろいろ引き出し作って見ました
いろいろ引き出し作って見ましたMutsumi IWAISHI
 

More from Mutsumi IWAISHI (7)

DNSって結局何?って人向けのRoute53の話など
DNSって結局何?って人向けのRoute53の話などDNSって結局何?って人向けのRoute53の話など
DNSって結局何?って人向けのRoute53の話など
 
アプリ開発検証はLXC+Ansibleで楽ちんにやろう!
アプリ開発検証はLXC+Ansibleで楽ちんにやろう!アプリ開発検証はLXC+Ansibleで楽ちんにやろう!
アプリ開発検証はLXC+Ansibleで楽ちんにやろう!
 
複数Linuxサーバ構成の検証? それ1インスタンスでできるよ!
複数Linuxサーバ構成の検証? それ1インスタンスでできるよ!複数Linuxサーバ構成の検証? それ1インスタンスでできるよ!
複数Linuxサーバ構成の検証? それ1インスタンスでできるよ!
 
ファーエンドテクノロジーのサービスを支えるOSS
ファーエンドテクノロジーのサービスを支えるOSSファーエンドテクノロジーのサービスを支えるOSS
ファーエンドテクノロジーのサービスを支えるOSS
 
Jaws ug shimane-1
Jaws ug shimane-1Jaws ug shimane-1
Jaws ug shimane-1
 
何なのc?
何なのc?何なのc?
何なのc?
 
いろいろ引き出し作って見ました
いろいろ引き出し作って見ましたいろいろ引き出し作って見ました
いろいろ引き出し作って見ました
 

ネットワークに流れるパケットをのぞいてみよう

  • 1. ISOL  
  • 2. ISOL •  •  Wireshark • 
  • 3. ISOL  
  • 4. ISOL •  •  • 
  • 5. ISOL OSI  Layer7 •  Web html h2p ntp End-­‐‑End TCP UDP IP IPX ieee802.3X ieee801.11X UTP
  • 6. ISOL BDU) Tcp,udp IP Mac HUB
  • 7. ISOL •  1 o  •  2 o MAC •  3 o IP
  • 8. ISOL TCP/IP TCP/IP Wi-­‐‑Fi Ethernet
  • 9. ISOL OSI
  • 10. ISOL tcp/ip •  tcp/ip o  o  tcp ip o  tcp/ip udp o  ip o  tcp udp ip tcp(udp)/ip
  • 11. ISOL tcp udp •  TCP o  o  o  o  o  3-Way •  UDP o  o  o  o 
  • 12. ISOL
  • 13. ISOL HUB C A B C D
  • 14. ISOL HUB MAC C A B C D
  • 15. ISOL IP C A B C D
  • 16. ISOL •  •  • 
  • 17. ISOL
  • 18. ISOL •  •  o  o  o  o  o 
  • 19. ISOL •  Wireshark o  GUI o  o  OS •  tcpdump o  CUI o  BSD Linux o  CUI •  Sniffer/Netasyst o  o  Windows Windows
  • 20. ISOL •  o  •  o  L1 HUB o  L2-SW
  • 21. ISOL SW SW SW SW SW SW SW
  • 22. ISOL •  •  •  •  • 
  • 23. ISOL •  Wireshark •  • 
  • 24. ISOL Wireshark  
  • 25. ISOL wireshark.org •    •  GPL-­‐‑OSS •  Ethereal   •      h4p://www.wireshark.org/
  • 26. ISOL Wireshark
  • 27. ISOL Wireshark •  OSS GPL •  0 •  Windows Mac Linux,BSD •  GUI •  Windows USB-Portable
  • 28. ISOL SW SW SW SW SW
  • 29. ISOL •  Wireshark • 
  • 30. ISOL •  •  PC HDD ID
  • 31. ISOL •  o  Capture stop •  o  File save
  • 32. ISOL •  Filter •  o  o  IP o  MAC o  o  o 
  • 33. ISOL
  • 34. ISOL IP •  Filter ip.addr==x.x.x.x Apply Enter •  IP
  • 35. ISOL MAC •  Filter eth.addr==xx:xx:xx:xx:xx:xx Apply •  MAC
  • 36. ISOL •  Filter tcp.port==xxx Apply •  tcp xxx
  • 37. ISOL •  Filter Expression o  Expression… o  Field name Relation Value OK o  Apply •  IP 192.168.2.1 Field name: ip.src IPv4 Relation: == Value: 192.168.2.1
  • 38. ISOL •  and(&&) or(||) •  Range • 
  • 39. ISOL
  • 40. ISOL  
  • 41. ISOL •  172.16.200.200/24 •  PC 172.16.200.xxx/24(DHCP) •  DNS 172.16.200.200(DHCP) •  httpd(https ),dns,sshd,telnetd,smtpd,pop3d •  user1,user2,user3,user4, • 
  • 42. ISOL h2p •  Web •  Wireshark LAN •  http://testsv.sitw.com/ • 
  • 43. ISOL Tcp  3way-­‐‑handshack
  • 44. ISOL h2p h2ps •  https://testsv.sitw.com/ •  o  o  http
  • 45. ISOL GET POST •  http://testsv.sitw.com/gettest.html web •  http://testsv.sitw.com/posttest.html web
  • 46. ISOL BASIC •  BASIC •  •  URL http://testsv.sitw.com/basic/ User: sitw Pass: sitw
  • 47. ISOL Digest •  Digest •  URL http://testsv.sitw.com/digest/ User: sitw Pass: sitw
  • 48. ISOL •  • 
  • 49. ISOL
  • 50. ISOL •  telnet ssh •  DNS •  PING •  smtp smtp-auth pop3 imap4
  • 51. ISOL
  • 52. ISOL •  • 
  • 53. ISOL •  •  Flow Graph o  Statistics Flow Graph o  o  IP o 
  • 54. ISOL •  •  Follow TCP Stream o  Analyze Follow TCP Stream o  o  udp Follow UDP Stream
  • 55. ISOL •  •  Expert infos o  Analyze Expert info Composite o  Error Warning Notes o  Chat tcp
  • 56. ISOL •  •  IO Graph o  Statistics IO Graph o  Filter
  • 57. ISOL •  •  Protocol Hierarchy o  Statistics Protocol Hierarchy o 
  • 58. ISOL •  •  • 
  • 59. ISOL •  o  Capture Options Capture File o  Use multiple files •  Proxy http Decode As o  Analyze Decode As o 
  • 60. ISOL
  • 61. ISOL Q !!w •  o  www.yahoo.co.jp o  IP o  o  DNS •  o  DHCP o  o  DNS
  • 62. ISOL Q: •  o  o  o  DNS •  o  o  o  o  o 
  • 63. ISOL Packet Black Hole
  • 64. ISOL