book

Network Troubleshooting Tools

Name: Network Troubleshooting Tools
Author: Joseph D Sloan
ISBN: 9780596001865

by Joseph D Sloan

August 2001

Intermediate to advanced

364 pages

12h 39m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Network Troubleshooting Tools
Preface
AudienceOrganizationConventionsAcknowledgments
1. Network Management and Troubleshooting
1.1. General Approaches to Troubleshooting1.2. Need for Troubleshooting Tools1.3. Troubleshooting and Management1.3.1. Documentation1.3.2. Management Practices1.3.2.1. Professionalism1.3.2.2. Ego management1.3.2.3. Legal and ethical considerations1.3.2.4. Economic considerations
2. Host Configurations
2.1. Utilities2.1.1. ps2.1.2. top2.1.3. netstat2.1.4. lsof2.1.5. ifconfig2.1.6. arp2.1.7. Scanning Tools2.2. System Configuration Files2.2.1. Basic Configuration Files2.2.2. Configuration Programs2.2.3. Kernel2.2.4. Startup Files and Scripts2.2.5. Other Files2.2.5.1. Application files2.2.5.2. Security files2.2.5.3. Log files2.3. Microsoft Windows
3. Connectivity Testing
3.1. Cabling3.1.1. Installing New Cabling3.1.2. Maintaining Existing Cabling3.1.3. Testing Cabling3.1.3.1. Link lights3.1.3.2. Cable testers3.1.3.3. Other cable tests3.2. Testing Adapters3.3. Software Testing with ping3.3.1. ping3.3.2. How ping Works3.3.2.1. Simple examples3.3.2.2. Interpreting results3.3.2.3. Options3.3.2.4. Using ping3.3.3. Problems with ping3.3.3.1. Security and ICMP3.3.3.2. Smurf Attacks3.3.3.3. Ping of Death3.3.3.4. Other problems3.3.4. Alternatives to ping3.3.4.1. fping3.3.4.2. echoping3.3.4.3. arping3.3.4.4. Other programs3.4. Microsoft Windows
4. Path Characteristics
4.1. Path Discovery with traceroute4.1.1. Options4.1.2. Complications with traceroute4.2. Path Performance4.2.1. Performance Measurements4.2.2. Bandwidth Measurements4.2.2.1. ping revisited4.2.2.2. pathchar4.2.2.3. bing4.2.2.4. Packet pair software4.2.3. Throughput Measurements4.2.3.1. ttcp4.2.3.2. netperf4.2.3.3. iperf4.2.3.4. Other related tools4.2.4. Traffic Measurements with netstat4.3. Microsoft Windows
5. Packet Capture
5.1. Traffic Capture Tools5.2. Access to Traffic5.3. Capturing Data5.4. tcpdump5.4.1. Using tcpdump5.4.2. tcpdump Options5.4.2.1. Controlling program behavior5.4.2.2. Controlling how information is displayed5.4.2.3. Controlling what’s displayed5.4.2.4. Filtering5.4.2.4.1. Address filtering.5.4.2.4.2. Protocol and port filtering.5.4.2.4.3. Packet characteristics.5.4.2.4.4. Compound filters.5.5. Analysis Tools5.5.1. sanitize5.5.2. tcpdpriv5.5.3. tcpflow5.5.4. tcp-reduce5.5.5. tcpshow5.5.6. tcpslice5.5.7. tcptrace5.5.8. trafshow5.5.9. xplot5.5.10. Other Packet Capture Programs5.6. Packet Analyzers5.6.1. ethereal5.6.1.1. Using ethereal5.6.1.2. Display filters5.7. Dark Side of Packet Capture5.7.1. Switch Security5.7.2. Protecting Yourself5.8. Microsoft Windows
6. Device Discovery and Mapping
6.1. Troubleshooting Versus Management6.1.1. Characteristics of Management Software6.1.2. Discovery and Mapping Tools6.1.3. Selecting a Product6.2. Device Discovery6.2.1. IP Address Management6.2.2. nmap6.2.3. arpwatch6.3. Device Identification6.3.1. Stack Fingerprinting6.3.2. queso6.3.3. nmap Revisited6.4. Scripts6.4.1. Tcl/Tk and scotty6.5. Mapping or Diagramming6.5.1. tkined6.5.1.1. Drawing maps with tkined6.5.1.2. Autodiscovery with tkined6.6. Politics and Security6.7. Microsoft Windows6.7.1. Cyberkit6.7.2. Other Tools for Windows
7. Device Monitoring with SNMP
7.1. Overview of SNMP7.2. SNMP-Based Management Tools7.2.1. NET SNMP (UCD SNMP)7.2.1.1. snmpget7.2.1.2. Configuration and options7.2.1.3. snmpgetnext, snmpwalk, and snmptable7.2.1.4. snmpset7.2.1.5. snmptranslate7.2.1.6. snmpnetstat7.2.1.7. snmpstatus7.2.1.8. Agents and traps7.2.2. scotty7.2.3. tkined7.2.3.1. ICMP monitoring7.2.3.2. SNMP traps7.2.3.3. Examining MIBs7.2.3.4. Monitoring SNMP objects7.2.3.5. Other commands7.2.3.6. Caveats7.3. Non-SNMP Approaches7.4. Microsoft Windows7.4.1. Windows SNMP Setup7.4.2. SNMP Tools7.4.3. Other Options
8. Performance Measurement Tools
8.1. What, When, and Where8.2. Host-Monitoring Tools8.3. Point-Monitoring Tools8.3.1. ntop8.3.1.1. Interactive mode8.3.1.2. Web mode8.4. Network-Monitoring Tools8.4.1. mrtg8.4.1.1. mrtg configuration file8.4.2. rrd and the Future of mrtg8.4.3. cricket8.5. RMON8.6. Microsoft Windows8.6.1. ntop, mrtg, and cricket on Windows8.6.2. getif revisited

9. Testing Connectivity Protocols
9.1. Packet Injection Tools9.1.1. Custom Packets Generators9.1.1.1. hping9.1.1.2. nemesis9.1.1.3. Other tools9.1.2. Load Generators9.1.2.1. spray9.1.2.2. MGEN9.2. Network Emulators and Simulators9.2.1. NISTNet9.2.2. ns and nam9.3. Microsoft Windows
10. Application-Level Tools
10.1. Application-Protocols Tools10.1.1. Email10.1.2. HTTP10.1.3. FTP and TFTP10.1.4. Name Services10.1.4.1. nslookup and dig10.1.4.2. doc, dnswalk, and lamers10.1.4.3. Other tools10.1.4.4. NIS and NIS+10.1.5. Routing10.1.6. NFS10.2. Microsoft Windows
11. Miscellaneous Tools
11.1. Communications Tools11.1.1. Automating Documentation11.1.2. vnc11.1.3. ssh11.2. Log Files and Auditing11.2.1. syslog11.2.1.1. Configuring syslog11.2.1.2. Remote logging11.2.2. Log File Management11.2.3. Other Approaches to Logging11.2.3.1. tcpwrappers11.3. NTP11.4. Security Tools11.4.1. tripwire11.5. Microsoft Windows
12. Troubleshooting Strategies
12.1. Generic Troubleshooting12.2. Task-Specific Troubleshooting12.2.1. Installation Testing12.2.1.1. Firewall testing12.2.2. Performance Analysis and Monitoring12.2.2.1. General steps12.2.2.2. Bottleneck analysis12.2.2.3. Capacity planning
A. Software Sources
A.1. Installing SoftwareA.1.1. Generic InstallsA.1.2. Solaris PackagesA.1.3. Red Hat Package ManagerA.1.4. FreeBSD PortsA.2. Generic SourcesA.3. LicensesA.4. Sources for Tools
B. Resources and References
B.1. Sources of InformationB.2. References by TopicB.2.1. System ManagementB.2.2. TCP/IPB.2.3. Specific ProtocolsB.2.4. PerformanceB.2.5. TroubleshootingB.2.6. WiringB.2.7. SecurityB.2.8. ScriptingB.2.9. Microsoft WindowsB.3. References
Index
Colophon
Copyright

Content preview from Network Troubleshooting Tools

Chapter 4. Path Characteristics

In the last chapter, we attempted to answer a fundamental question, “Do we have a working network connection?” We used tools such as ping to verify basic connectivity. But simple connectivity is not enough for many purposes. For example, an ISP can provide connectivity but not meet your needs or expectations. If your ISP is not providing the level of service you think it should, you will need something to base your complaints on. Or, if the performance of your local network isn’t adequate, you will want to determine where the bottlenecks are located before you start implementing expensive upgrades. In this chapter, we will try to answer the question, “Is our connection performing reasonably?”

We will begin by looking at ways to determine which links or individual connections compose a path. This discussion focuses on the tool traceroute. Next, we will turn to several tools that allow us to identify those links along a path that might cause problems. Once we have identified individual links of interest, we will examine some simple ways to further characterize the performance of those links, including estimating the bandwidth of a connection and measuring the available throughput.

Path Discovery with traceroute

This section describes traceroute, a tool used to discover the links along a path. While this is the first step in investigating a path’s behavior and performance, it is useful for other tasks as well. In the previous discussion of ping, it ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Optimizing Applications on Cisco Networks

Publisher Resources

ISBN: 059600186XErrata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Network Troubleshooting Tools

by Joseph D Sloan

Chapter 4. Path Characteristics

Path Discovery with traceroute

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.