Week 2
This week, we learned about the source of network-based evidence, principles of internetworking, and internet protocol suite. During the lab session, we learned how to create pcap file as evidence.
The source of network-based evidence includes:
- On the wire: wire can carry data over the network
- In the Air
- Switches
- Routers
- DHCP Server
- DNS Server
- Authentication Server
- NIDS/NIPS
- Firewalls
- Web Proxies
- Application Server
- Centralized Log Server
- Modem
Internetworking on the other hand is the connection and communication between many networks. Internetworking requires a link between networks that must be established, routing for delivery of data between networks, an account to keep track of status information, and transparent.