Exam is in a few days and I have a bit of confusion which I need assistance with.
I have seen an overlap of the differences between a Packet Sniffer, Port Scanner, IDS and an Protocol Analyzer.
As far as im aware you would use a Protocol analyzer to decode and read network traffic, A packet sniffer is used to eavesdrop on the packets sent across the network, a Port Scanner is used to identify the states of Ports on the system (IE are they open and listening) and an IDS is used to monitor and report any malicious activity on the network.
Which 2 would you use to see what protocols are being used on the network, Also please correct me if any of the above is incorrect.
Isn't a packet sniffer the same thing as a protocol analyzer? I think with a packet sniffer/ protocol analyzer you can see the packets that traverse through your network. On the other hand, a port scanner shows the open ports on a host or server. I think you would use a port scanner + protocol analyzer to see the protocols being used.
I have seen an overlap of the differences between a Packet Sniffer, Port Scanner, IDS and an Protocol Analyzer.
Which 2 would you use to see what protocols are being used on the network, Also please correct me if any of the above is incorrect.
I would go with a Sniffer + Protocol Analyzer. In many cases these are combined into one package! For example, Wireshark can do both roles. However, sometimes these roles are separated. For example, your favorite protocol analyzer may not support a particular interface type. You then end up sniffing with one tool and analyzing with another.
An IDS is completely wrong. That's a security device that monitors for malicious activity.
A port scanner is also completely wrong. Just because you have a particular service running on port 23 of server 10.1.1.4, does not mean it's being used or that protocol's PDUs are traversing the network. This often occurs with unhardened servers.
You might like to check out this blog which describes common network tools including a sniffer and a protocol analyzer (which kingloki correctly identifies is the same thing) Network+ Hardware Tools. Many years ago, a protocol analyzer was primarily a hardware device and a packet sniffer was a software program but the terms are mixed today. You can think of them as synonymous and as NetworkVeteran mentions, these are the best choice to identify protocols used on network.
This article talks about ports: Ports for Network+, Security+, and SSCP Exams | Get Certified Get Ahead. Essentially a port scanner identifies which ports are open on individual host systems. Indirectly, this can identify what protocols are being used because ports are related to protocols.
Say thank you: Always say thank you for asking: It doesn't matter how you choose to respond; I believe it's essential to acknowledge their concern. ...
Ask for support: If you feel open and comfortable seeking help from the person asking, you can let them know what you need.
"Sure, what's your question?" you can say. or "Ask away, I'm happy to assist." "Sure, what's your question?" you can say, or "Ask away, I'm here to help." If you want to help with an answer: You would say, “Sure, I can help you with your doubts or questions.”
Instead of directly stating “I need your help with,” consider using phrases like “Could you please assist me with,” or “I would greatly appreciate your support with.” These alternatives convey the same message while maintaining a respectful tone.
When someone asks you if they can help, refer to your list and say “YES.” Let them choose what task on the list they would like to do. You don't need to feel indebted to those who help—your sincere appreciation of their help is thanks enough. People understand that you may not be able to return the favor.
Responses such as “o*kay,” “All right,” and “Thank you,” rather than “Awesome,” “Perfect,” and “Exactly” show equitable acknowledgement without evaluating the response. Paraphrasing what the students say is another way to show that the facilitator is listening and acknowledging the responses.
When someone asks you a question, consider asking them what they mean in their own words. This is especially helpful to clarify ambiguous or controversial terms and avoid misunderstandings. You want to know exactly what the other person is thinking before so that your response can be relevant and appropriate.
Address: Suite 492 62479 Champlin Loop, South Catrice, MS 57271
Phone: +9663362133320
Job: District Sales Analyst
Hobby: Digital arts, Dance, Ghost hunting, Worldbuilding, Kayaking, Table tennis, 3D printing
Introduction: My name is Kieth Sipes, I am a zany, rich, courageous, powerful, faithful, jolly, excited person who loves writing and wants to share my knowledge and understanding with you.
We notice you're using an ad blocker
Without advertising income, we can't keep making this site awesome for you.