Question
Answer the case without explanation please. Thanks
make sure not hand writing and can be copied and past.
ng protocols are you observing in the packet Is are you observing in the packet capture below? 16:42:01 SRC 192.168.1.5:3389 DST 1 A. HTTP B. HTTPS C. RD D. SFTP 0.254.254.57:8080 sY/ACK Case Studies for Chapter 12 The case studies in this chapter offer generic scenarios for you to read through and answer accatd ing to your own technology and experiences. There are example solutions in a PDF on the DVD Your solutions might vary, but both can certainly be valid hands-on videos and simulations, which can be found on the DVD. . Many case study solutions also pints Case Study 12-1: Capturing and Analyzing Packets Scenario: You are doing work for a medium-sized business with several servers. There is concer that one of the servers is running a non-secured FTP service, and is possibly being used for non work purposes. Your task is to analyze the traffic coming in and out of the server. What technology should you use to analyze the traffic?
Explanation / Answer
1) Ans)
There are lot of technologies available to analyze the traffic but the best suited for this scenario is protocol analyzer or also known as network sniffer or packet sniffer. Following are the famous tools available.
a) Wireshark
b) Network monitor
c) netscout
d) TCPdump
e) snoop
2) Ans)
Session layer also known as port layer deals with ports used by the application.