Lab 3 1: ARP Observation - jude-lindale/Wiki GitHub Wiki

Tech Journal Summary In this lab we were tasked with running commands in Command Prompt and using wireshark. We started by starting a trace with wireshark, running the command "netsh interface ip delete arpcache" to delete any saved ARP results, and then ping the default gateway. Then we had to look through what was captured by wireshark but we only wanted to see the ARP results so everything else got filtered out. Then we were task with doing the same thing but this time we had to ping Google's Public DNS server.

Commands

  • ipconfig/all: will show you all of the ip configurations
  • netsh interface ip delete arpcache: this command will delete any saved ARP results

Tech Journal Questions How to open an Admin Command Prompt: Type CMD in the search bar in the bottom right-hand corner and right-click, and then click Run as Administrator

How to clear the ARP cache: Run the command netsh interface ip delete arpcache

How can you filter a packet capture in Wireshark to view just ARP packets?: you type arp in the search bar

Any other Wireshark info that is useful: N/A

Any issues you ran into and how they were resolved: Could not ping LAN default gateway so I plugged my computer into the Ethernet and it worked.