Computerworld - Previously, I explained how to use a computer that others have cast off as being unusable as a powerful network analysis tool.
By combining the Linux distribution Fedora Core with the open-source packages libpcap, tcpdump, iptraf and Multi Router Traffic Grapher (MRTG), I demonstrated how useful statistics on network usage and trends can be obtained.
In this final installment of the series, I present examples based on actual cases I've encountered where these tools were utilized to solve the problem.
In the first example, a small network with a 384Kbit/sec. ISDN connection to the Internet was slow at best and unusable at worst. The LAN performance was fine; only Internet traffic was affected.
In all network troubleshooting situations, an understanding of the network topology is paramount to place the sniffer at the appropriate location. This wasn't a network I was familiar with, so I performed a walk-through with the network administrator. The network was simple: one private subnet NATed to a single public IP address, distributed by two hubs and a switch with a couple of local servers off the switch, and a connection from the switch to the ISDN Internet router, as shown in Figure 1.
Figure 1: First example network diagram
(Click image to see larger view)
As port mirroring wasn't an option on the 100Mbit/sec. switch, I took out a minihub from my network tool bag (everyone carries one, right?) and placed it inline between the 100Mbit/sec. switch and the ISDN router as shown in Figure 2. True, this changed the original network topology, but since port mirroring (whereby all traffic seen on one port is copied to another) was not available, the hub placement was the best alternative. There are advantages to this method, as port mirroring will not show physical layer errors, but generally I prefer port mirroring.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- What Datapipe customers need to know about the new PCI DSS 3.0 compliance standard This handy quick reference outlines what PCI DSS 3.0 is, who needs to be compliant and how Alert Logic solutions address the new...
- Defense Throughout the Vulnerability Life Cycle This whitepaper provides insight into how to leverage threat and log management technologies to protect your IT assets throughout their vulnerability life cycle.
- The Critical Role of Support in Your Enterprise Mobility Management Strategy Most business leaders underestimate the importance of tech support when they choose an EMM solution. Here's what to put on your checklist.
- Separating Work and Personal at the Platform Level: How BlackBerry Balance Works BlackBerry® Balance™ separates work from personal on the same mobile device, right at a platform level. Find out how it can work for...
- Live Webcast Best Practices for the Hyperconverged Enterprise Network To the Age of Constant Connectivity and Information overload
- Getting Ready for BlackBerry Enterprise Service 10.2 Find out how BlackBerry® Enterprise Service 10 helps organizations address the full spectrum of EMM challenges, while balancing the needs of both the...
- Containerization Options: How to Choose the Best DLP Solution for Your Organization This webcast outlines a framework for making the right choice when it comes to containerization approaches, along with the pros and cons of... All Networking White Papers | Webcasts