Merci -----Message d'origine----- De : [email protected] [mailto:[email protected]] De la part de Fabien Bourdaire Envoyé : mardi 14 août 2012 19:06 À : [email protected] Cc : Patrick Heintzmann Objet : Re: [FRnOG] [BIZ] Formation sur capture et analyse de trames sur Ethernet
Au boulot quand je forme les gars c'est: Théorie TCP/IP illustrated vol 1 & 2 Pratique: ARP/DHCP/DNS/TCP/HTTP/SMTP/POP3/Netbios/Wins/iptables/proxy/... Comprendre les différents type d'arp pour pouvoir manuellement faire un reverse engineering d'une configuration d'un PC base sur l'ARP qu'il génère... en gros default gateway netmask broadcast. DNS - différence en un cache un nameserver, les differents type de requêtes et autre. Enfin bizarrement le plus dur pour la plus part c'est l'ARP que tous le monde *pense* connaître mais en fait la realite est tout autre ! Après lecture de RFC & de 'man' pages beaucoup de troubleshooting a base de wireshark & logs parce que connaître comment sont former les paquets n'est pas suffisant.. savoir comprendre les logs et avoir le bon niveau d'information logger, reporter & interpréter est aussi très important. Ah oui il te faudra beaucoup de courage de temps et de patience car en général il faut re-apprendre les _vrai_ bases du réseaux :) Fabien. On 14 August 2012 16:01, Fabien Delmotte <[email protected]> wrote: > Bonsoir, > > Je préfère la méthode empirique couplée à de la théorie :) Point 1 : > Que veux tu analyser ? > > Point 2 : > Lecture des standards et rfc. > > Point 3 : > Maquette pour vérifier l implémentation du constructeur Addon ... Si > tu as un générateur pour générer des options. > > Outils de capture: tcpdump, wireshark ...etc > > Cordialement > > Fabien > > > Le 14 août 2012 à 18:45, Patrick Heintzmann <[email protected]> a > écrit : > >> Bonjour, >> >> Sauriez-me recommander une formation à la fois académique et pratique sur >> la capture et l'analyse de trames TCP ? >> >> D'avance merci >> >> [Zycko]<http://www.zycko.fr/> >> >> [http://www.zycko.com/images/signature/FRANCE/i/august2012.png]<http: >> //fr.zycko.com/produits/meraki/> >> >> >> >> >> Patrick Heintzmann >> >> >> >> >> Directeur général >> >> >> >> >> T: >> >> +33 1 80 77 02 73 >> >> >> >> M: >> >> +33 6 80 99 31 49 >> >> >> >> E: >> >> [email protected]<mailto:[email protected]> >> >> >> >> W: >> >> www.zycko.fr<http://www.zycko.fr/> >> >> >> >> Zycko TV<http://fr.zycko.com/mediatheque/zycko-tv/> >> >> >> >> >> >> >> _____________________________________________________________________ >> __ >> >> This email is confidential and intended solely for the use of the individual >> to whom it is addressed. Any views or opinions presented are solely those of >> the author and do not necessarily represent those of Zycko Limited. If you >> are not the intended recipient, be advised that you have received this email >> in error and that any use, dissemination, forwarding, printing, or copying >> of this email is strictly prohibited. If you have received this email in >> error please notify Zycko Limited on +44 1285 868500. >> All emailed quotes are valid for 14 days, subject to availability, unless >> otherwise stated. All emailed quotes are subject to Zycko's standard Terms >> and Conditions. >> >> This e-mail has been scanned for all viruses by Star Internet. The >> service is powered by MessageLabs. For more information on a >> proactive anti-virus service working around the clock, around the globe, >> visit: >> http://www.star.net.uk >> _____________________________________________________________________ >> ___ >> --------------------------- >> Liste de diffusion du FRnOG >> http://www.frnog.org/ > > > --------------------------- > Liste de diffusion du FRnOG > http://www.frnog.org/ ________________________________________________________________________ This e-mail has been scanned for all viruses by Star. The service is powered by MessageLabs. For more information on a proactive anti-virus service working around the clock, around the globe, visit: http://www.star.net.uk ________________________________________________________________________ _______________________________________________________________________ This email is confidential and intended solely for the use of the individual to whom it is addressed. Any views or opinions presented are solely those of the author and do not necessarily represent those of Zycko Limited. If you are not the intended recipient, be advised that you have received this email in error and that any use, dissemination, forwarding, printing, or copying of this email is strictly prohibited. If you have received this email in error please notify Zycko Limited on +44 1285 868500. All emailed quotes are valid for 14 days, subject to availability, unless otherwise stated. All emailed quotes are subject to Zycko's standard Terms and Conditions. This e-mail has been scanned for all viruses by Star Internet. The service is powered by MessageLabs. For more information on a proactive anti-virus service working around the clock, around the globe, visit: http://www.star.net.uk ________________________________________________________________________ --------------------------- Liste de diffusion du FRnOG http://www.frnog.org/
