Wireshark Analysis of Networked Applications: MN504 Assignment

Verified

Added on 2023/04/24

AI Summary

This report presents a network analysis conducted using Wireshark on two websites, abc.net.au/news/ and iview.abc.net.au/, across three different networks. Live data packets were captured to evaluate performance, quality of service, and service management, with a focus on packet loss and retransmission to determine network throughput. The analysis identifies network issues for management purposes and compares application statistics across different networks. Details of each captured packet are provided, along with a comparison of Wireshark's GUI features against Microsoft Message Analyzer. The report includes observations on start times, packet counts, lost packets, and IP addresses for each network, and uses filters to analyze retransmissions and packet loss. Throughput graphs and retransmission statistics are compared to assess network stability, concluding that the third network is the most stable. The report also compares Wireshark with Microsoft Message Analyzer, evaluating ease of use, GUI, traffic visualization, and statistics generation to inform network management and optimization.

Running head: NETWORKED APPLICATION MANAGEMENT
Network Analysis using Wireshark
Name of the Student
Name of the University
Author’s Note

Paraphrase This Document

Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser

1
NETWORKED APPLICATION MANAGEMENT
Table of Contents
Introduction...........................................................................................................................................2
Part 1:....................................................................................................................................................2
Part 2:....................................................................................................................................................7
Part 3...................................................................................................................................................11
Part 4...................................................................................................................................................16
Conclusion...........................................................................................................................................19
Bibliography.........................................................................................................................................20

2
NETWORKED APPLICATION MANAGEMENT
Introduction
For the development of the report an analysis is made on two different websites i.e.
“https://www.abc.net.au/news/”, ”https://iview.abc.net.au/” using Wireshark. Live data packets are
captured from three different networks for the evaluation of performance, quality of service and
service management. The packet loss and retransmission of the data packet of the network is
evaluated for finding the throughput of the network. The issues in the network are identified for the
management of the network and comparing the statistics of the different applications in the
different network. The details of each of the packet captured from the network is given in the report
and the GUI feature of the tool is compared with other tools and given in the report.
Part 1:
Network 1:
1. Start time of capture
The time of capture and details are analysed from the summary of packet capture and the details are
given below:
First packet:
2019-01-28 17:35:16
Last packet:
2019-01-28 17:35:45

3
NETWORKED APPLICATION MANAGEMENT
Elapsed:
00:00:28
2. Total number of capture packet for each protocol
Th total packet captured from the network while reaching the two websites is 2803 and it is
visulaized from the packet summary.
3. Total Number of lost packets
The number of lost packet are unknown from the summary and 0 number of packets are lost in the
network, it can be found with implementing the filter in Wireshark “tcp.analysis.lost_segment”.
4. IP addresses of the client and server

Paraphrase This Document

Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser

4
NETWORKED APPLICATION MANAGEMENT
The Ip address of client and server is given below:
Internet Protocol Version 6,
Src: 2409:4060:209f:f0da:612e:9374:34a9:4d36,
Dst: 2404:6800:4002:80a::2004
Network 2:
1. Start time of capture
The following is the details of packet capture from the network and the details can be found
from the summary section of the packet captured.
First packet:
2019-01-28 16:29:31
Last packet:

5
NETWORKED APPLICATION MANAGEMENT
2019-01-28 16:30:19
Elapsed:
00:00:47
2. Total number of capture packet for each protocol
For each of the protocol 3707 number of packets are captured from the network using the
Wireshark Packet capture.
3. Total Number of lost packets
The total number of data packet that is lost in the network is unknown from the summary of the
packet captured and it can be found with the application of filter and it is found that 0 packet is lost.
4. IP addresses of the client and server
The IP address of client and server are given below:
Internet Protocol Version 4, Src: 10.10.30.79, Dst: 8.8.8.8

6
NETWORKED APPLICATION MANAGEMENT
Network 3:
1. Start time of capture
The following is the details of packet capture from the network and the details can be found
from the summary section of the packet captured.
First packet:
2019-01-28 18:11:25
Last packet:
2019-01-28 18:11:49
Elapsed:
00:00:23
2. Total number of capture packet for each protocol

Paraphrase This Document

Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser

7
NETWORKED APPLICATION MANAGEMENT
For each of the protocol 2497 number of packets are captured from the network using the
Wireshark Packet capture.
3. Total Number of lost packets
The total number of data packet that is lost in the network is unknown from the summary of the
packet captured and it can be found with the application of filter and it is found that 0 packet is lost.
4. IP addresses of the client and server
The IP address of client and server are given below:
Client: 172.30.4.46,
Server: 172.217.160.195
Part 2:
Network 1
1. Name Resolution-Network Address

8
NETWORKED APPLICATION MANAGEMENT
The step View > Name Resolution followed by checking the Resolve Network Addresses is needed to
be followed for showing the Network Addresses in place of the physical address.
2. Retransmission
The filter “tcp.analysis.retransmission” is implemented in the Apply display filter section for
displaying the data packet that are retransmitted and it shows the packet 801, 1276, 1325, 1370,
1388, 2238, 2656, 2755, 2797, 2803 packets are retransmitted.
3. Packet Loss
0 packet is lost while connecting with the two website and it is analysed by applying the filter
tcp.analysis.lost_segment in the wireshark packet capture file.
Network 2

9
NETWORKED APPLICATION MANAGEMENT
1. Name Resolution-Network Address
The step View > Name Resolution followed by checking the Resolve Network Addresses is needed to
be followed for showing the Network Addresses in place of the physical address.
2. Retransmission
The filter “tcp.analysis.retransmission” is implemented in the Apply display filter section for
displaying the data packet that are retransmitted and it shows the packet 3527 3528, 3531 3532,
3583 3584, 3600 3601, 3684 3685 packets are retransmitted.

Paraphrase This Document

Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser

10
NETWORKED APPLICATION MANAGEMENT
3. Packet Loss
The above screenshot shows no packets are lost while reaching the sites and analysing the
application and service from the sites. The filter “tcp.analysis.lost_segment” is applied for
demonstration of the lost packets.
Network 3
1. Name Resolution-Network Address
The step View > Name Resolution followed by checking the Resolve Network Addresses is
needed to be followed for showing the Network Addresses in place of the physical address.
2. Retransmission

11
NETWORKED APPLICATION MANAGEMENT
The filter “tcp.analysis.retransmission” is implemented in the Apply display filter section for
displaying the data packet that are retransmitted and it shows the packet 349, 1066, 1216, 1420,
1983, 2021, 2128, 2138 packets are retransmitted.
3. Packet Loss
The above screenshot shows no packets are lost while reaching the sites and analysing the
application and service from the sites. The filter “tcp.analysis.lost_segment” is applied for
demonstration of the lost packets.
Part 3
In this part the collected statistics with the help of Wireshark is compared with each other
for finding the best network and analysis of its stability. The TCP retransmission statistics and
throughput graph are used for analysis of performance of the website and it is found that the third
network is most stable. The third network have minimum packet loss and thus needs less
retransmission of data packet. The throughput graph generated from the network is found stable
and it is found with the implementation of different filters such as “tcp.analysis.retransmission” and
“tcp.analysis.lost_segment”.
Network 1