1.3.c Interpret packet capture

1.3.c [i] Using Wireshark trace analyzer

turn on wireshark and set up a packet capture to filter telnet traffic from one device to another…

note frame 23 was the password request from r2…

telnetcap01

the password is plain text to illustrate the next point…

note frame 31 below, it begins the payload transfer of the password cisco with a c:

telnetcap02

frame 33 has the i, and so on…

telnetcap03

another way of accomplishing this is to follow the stream

using analyze–follow TCP stream, in the drop down…

telnetcap04

looking back at the capture window we note the new filter that includes the entire stream, with the tcp ack’s…

telnetcap05