Analyse tcpdump file

Hello! I've got huge experience with networks working as network engineer in multiple ISPs. In my experience there were lots of cases like yours. Typical root causes, producing such behavior are: - a broadcast storm, caused by a computer virus, or an ethernet loop. - a unicast storm, caused by a computer virus The broadcast storm can be easily detected by analyzing broadcast packet counters on the router or on the network switches. The unicast storm can be detected by analyzing the network traffic using tcpdump, wireshark or a similar tool. In either case, I need to do some investigation of your network in order to find the exact root cause in your case. I'm sure I can locate the root cause and fix it (or tell you how to fix it if it'd be a wiring issue) by analyzing your network topology, routers and switches configuration and packet counters, and intercepting and analyzing some network traffic with tcpdump (if needed). Please contact me for further discussion. Thanks in advance!

Hi, I have been working as Network Analyst more than 10 years. I became CCNP, RHCE 3 years back. Earlier I completed B.Sc. Enng and M.Sc. Engg both in computer engineering. Hire Network professional not only writers. I'm both Check my works here https://www.freelancer.com/projects/Security-Forensics.html https://www.freelancer.com/projects/Technical-Writing-Cisco/Design-Computer-Network.html https://www.freelancer.com/projects/Social-Networking-Cisco/Design-OPNET.5744653.html https://www.freelancer.com/projects/Web-Security-Computer-Security/Web-Security.5469931.html I'm assuring you the best quality. I'm looking forward to hearing from you very soon

Hello! I have enough skills in networking troubleshooting as well as packet analyse. What i need to successful analyse - a basic information about your network - topology, hosts, servers, etc If you can send a sample (or full day captures) - i'll try to identify a "evil" host :)

To whomever this may concern, Dear Mr/Mrs, I am a professional network and security engineer and can do the task required for completion of this assignment.I have more that 4 years in the field. Please consider me for your project. Cheers.

Dear Sir, I have more than 10 years of experience working with network packet analysis jobs. And I have solved several network related problems (CIFS/SMB, HTTP, FTP, legacy protocols) using wireshark tool which can analyse tcpdump format. I will need to download those tcpdump files into my PC for detail analysis. It'll be much helpful if the IP addresses of the particular work station and respective server that face the network issue and approximate time slot that the issue took place. Please contact me if need more info or for detail discussion. Best regards/Saw Htee Moo

Have experience on Windows systems, Linux systems, Cisco/Juniper/HP/CheckPoint/Peplink/Fortinet devices and environments, Hosting, VM environments, Helpdesk and Asset Managements... If you need any further support or information, please don't hesitate to let me know. Regards.

Specializing in network troubleshooting using Wireshark and other tools. Structured approach in network troubleshhoting. I use RPR process by Paul Offord for resolving complicated cases. I will ask you for more information. Your description seems to be detailed, but it's not. I still don't know what EXACTLY is a problem. "Some workstations have massive network problems" - that is not the description I'm able to work with. I will keep the contact with you troughout all the process.

Hi, I can check your dump file. I just need to check with you more details about this problem. I am suspecting some scheduled job from Oracle or windows workstation. thanks in advance for this opportunity.

Hi. Here is my proposal. I can analyze tcpdump file also if you have a network diagram with specs of the routers and workstations, network interfaces and net speed I could also recommend a solution. thanks Alex

I have worked as embedded software engineer for 3 years , in the IP team and I have a lot of experience to analyze tcpdump files and find the problem that happens in the network .

Thanks for providing more information. Please can you also provide: 1. How the problem manifests itself to the user? What services are affected and how? 2. I do not understand how those 3 Linux sniffers are connected with those 3 PC. Do you make just ARP bridge/proxy using its network cards? Some little picture would help. 3. Are these 3 PC's connected with Linux those workstations which are experiencing the issue? 4. Those workstations experiencing the issue, are they always the same or just random? 5. Can you set port mirroring on your 3550 and 6905 switches and make packet dumps there? I suggest to create a simple script which would rotate pcap files after some time or after reaching particular size, e.g. dump one hour per file and rotate the oldest fle. Otherwise the files will grow beoynd limits and wireshark will have issue opening them. You will want to keep those captured during the issue occurence. 6. You mentioned you saw no packet storms. Please can you confirm you looked at both Layer2 and Layer3 packets? 7. Do you have any loops/backup links and spanning tree allowed? Most probably not, as you say no VLANs, so also no VLAN0, but just to make sure.

I'm certified network and security specialist. Working with one of the biggest enterprise developing network devices and equipment.

Hello, I'm a network and security engineer with good knowledge in servers. Kindly accept my bid and provide me with the packet capture. Moreover, it would be of great asset if you provide the network setup as well. Best Regards, Sikas.

I ahve done CCNA and CCNP, And Also know about computer security and lots of about it, please provide me this project 100% familiar with these.

Hi, I have worked on quite a number of networking issues that are intermittent in nature. This I did when I was working for Cisco and then for Juniper in the past. I have special interest in analyzing tcp dumps using Wireshark. I am willing to take up this task and am confident that I will be able to narrow down the root cause. In fact, I am ready to refund what you pay me if I am unsuccessful. Looking forward for your response.

Has a extensive hands on troubleshooting network related issues. Good knowledge in routing switching and network security domains. Hands on experience on wireshark and riverbed shark appliance for analysing packets to troubleshoot issues.

A proposal has not yet been provided

I am a network admin of 20 years. I analyse packet dumps daily. If the root cause is in the dump i will find it. If it is not i will tell you how else to find it.