Cis 2640 Lab

CIS 2640 – Lab

Network Devices and Technologies – Capturing Network Traffic

Your Name: | |

Date: | 1/18/15 |

Instructions: Complete the exercises included on this worksheet. For each exercise, read the instructions, complete the required tasks and submit evidence of your completed tasks (a screen shot is your evidence), and then answer the question provided.

* Showing Evidence of Completion: Your evidence of completion is a screen shot, as described in each exercise. Use the tool of your choice to take a screen shot of the required content. Paste the screen shot into the table cell as indicated. Make your screen shot image small by clicking on it, then holding down the SHIFT key while dragging one of the corner nodes inward. Your instructor will resize the images as needed to review your work.

* Answering Questions: Your answers should be written in carefully edited college-level English, using complete sentences.

Lab – Network Devices and Technologies – Capturing Network Traffic |

Instructions and Evidence of Completion | Answer a Question |

Paste a screen capture here that shows a successful wireshark capture, ping, and tcpdump.Hint: Be sure your screen shot(s) include the lab environment to ensure authenticity of your submission. tcpdump screenshot:wireshark-linux: wireshark-windows: ping-linux: ping-windows: | Question(s): 1. Explain why a network interface that has promiscuous mode turned off would prevent a sniffer running on the host from capturing all network traffic. Do you think a network interface on a sniffer machine would require an IP address to work? Your Answer: If the promiscuous mode for the NIC is turned off on the host machine, the NIC will essentially ignore packets that are not directed towards it. With promiscuous mode on it will allow the NIC to listen to all packets regardless of their destination. This also allows you to use a sniffer without being given a IP address on the network. |