Lab Manual for CWNA Guide to Wireless LANs, Second Edition
Lab Manual Solutions 7-1
Chapter 7 Solutions
Activity Questions, Lab 7-1
3.
What channel are you using? What is your access point’s IP address?
Answer: Varies; Varies
9.
What channel was your laptop communicating on?
Answer: Varies, but the same as recorded in Step 3
10. Record the percentages of beacons, HTTP, DNS, and Echo Request/Echo Reply total.
Answer: All vary.
12. Record the percentages of HTTP, DNS, Echo Request/Echo Reply total, and Probe Request/Probe
Response total.
Answer: All vary.
17. Record the Destination MAC address, Source MAC address, Source IP address, Destination IP
address, Port number, TCP Sequence number, and TCP ACK number.
Answer: All vary.
Review Questions, Lab 7-1
1.
What value is there in observing the different protocol types and their percentages in a packet
capture?
Answer: You might see a protocol that shouldn’t be operating on the network or very high
percentages of a particular protocol (like ICMP) that might be cause for concern.
2.
Why were you able to see the SSID in the capture?
Answer: By default, the access point broadcasts the SSID.
3.
Telnet is a secure method of configuring your access point. True or False?
Answer: False, because the transmission is in clear text
4.
How could the information obtained in Step 17 be used in an attack?
Answer: A hacker could use the IP addresses for spoofing and sequence numbers can be used to jump
in on a conversation – man-in-the-middle attack
5.
What is your opinion of AiroPeek as a tool for monitoring wireless networks?
Answer: Opinion varies.
Activity Questions, Lab 7-2
NOTE: This lab installs AirMagnet and uses a driver that is not compatible with AiroPeek. If the
students did the AiroPeek labs, they must install AirMagnet on the laptop that did not get configured
with AiroPeek. The other option is to roll back the driver on the AiroPeek laptop first; then students
can install AirMagnet on the same laptop. This really isn’t necessary, though. Just have students
install AirMagnet on the non-AiroPeek laptop, which is what the lab directs them to do.
10. What channel is your team’s equipment laptop using?
Answer: Varies, but same as recorded in step 3 in Lab 7.1
11. What is the percentage of red on your channel? What is the approximate dBm of the red on your
channel
Answer: Varies; varies
14. How many urgent security matters has AirMagnet found on this wireless LAN?
Answer: Varies
16. What is the most prevalent type of packet on your wireless LAN?
Lab Manual for CWNA Guide to Wireless LANs, Second Edition
Lab Manual Solutions 7-2
Answer: Varies, but probably broadcast traffic
17. Are any other SSIDs using your same channel? If yes, which one(s)?
Answer: Varies, but other teams shouldn’t be using the same channel at this point in the lab manual
18. What is the designation for your SSID? Is your equipment using any encryption?
Answer: N; no
20. Are you able to detect any new access points? If so, is encryption being used on these access points?
If yes, what type of encryption is being used?
Answer: Varies; Varies; Varies
21. What is the color of your channel field? What is the color of your Device/MAC address field?
Answer: Red; Green
22. What is your channel’s approximate bandwidth utilization? What is your channel’s approximate
throughput? As a rule of thumb, 60% utilization, which translates to 30 Mbps throughput on an
802.11a or 802.11b network, is a realistic upper limit for 802.11g networks. Do your numbers fall
within this range? If your numbers are outside the rule of thumb, what could explain this problem?
Answer: Varies; Varies; Varies; Interference
26. List the color and status indicated for the following alarms listed in Table 7-1.
Answer: Table recordings will vary, but most will show AP broadcasting SSID, AP with WEP
disabled, and Missing performance options all displayed as alarms.
27. Summarize the information you are given by AirWISE.
Answer: SSID broadcasting allows anyone to configure the same SSID and join your network.
28. Summarize the information you are given by AirWISE.
Answer: AP with WEP disabled means your transmissions can be easily sniffed and read.
30. Record the percentages for your channel in Table 7-2.
Answer: Table recordings will vary.
31. What speed are the majority of the frames experiencing using your channel?
Answer: Varies
Review Questions, Lab 7-2
1.
What does red indicate in the RF signal level meter?
Answer: Noise
2.
What is the purpose of the AirWISE section of AirMagnet?
Answer: To give advice on network configurations that may present a problem in terms of security or
performance
3.
How does knowing the different speeds at which data packets are transmitted and received help a
network administrator?
Answer: Knowing the speed of the majority of the packets helps administrators troubleshoot
performance problems.
4.
What feature does AirMagnet have that AiroPeek does not have?
Answer: AirMagnet has the alarm and security and performance tracking feature that AiroPeek does
not have.
5.
What is your opinion of AirMagnet as a tool for monitoring wireless networks?
Answer: Opinion varies.
Lab Manual for CWNA Guide to Wireless LANs, Second Edition
Lab Manual Solutions 7-3
Activity Questions, Lab 7-3
NOTE: This lab installs Network Stumbler, and is not compatible with the driver installed with
AiroPeek. If the students did the AiroPeek labs, they must install Network Stumbler on the laptop
that did not get configured with AiroPeek. The other option is to roll back the driver on the
AiroPeek laptop first; then students can install Network Stumbler on the same laptop. This really
isn’t necessary, though. Just have students install Network Stumbler on the non-AiroPeek laptop,
which is what the lab directs them to do.
5.
Which channels are being used?
Answer: Varies
6.
Does anything display in the right pane? Why or why not?
Answer: No; no encryption
7.
What displays in the right pane of the window?
Answer: Access points
8.
What displays in the right pane of the window? Can you explain the difference between an ESS and
an IBSS?
Answer: Probably nothing; ESS is an extended service set, which is multiple access points on the
same LAN segment, and IBSS is an independent basic service set, which is an ad hoc network, so no
access point
9.
What displays in the right pane? What is the default SSID for Cisco products?
Answer: Probably nothing, because no one at this point should be using the default SSID; tsunami
10. What valuable information displays?
Answer: Name of the organization, address of the organization, IP scheme
(Note: If private addresses are in use, ARIN will only explain that the IP addresses are reserved for
special purposes.)
13. What is your connected bandwidth? What is happening to the red area and why? What is happening
to the green area and why?
Answer: Varies; Increasing because SNR is decreasing; Decreasing because moving away from the
access point
14. Is encryption associated with any of the access points that Network Stumbler has found? If yes, what
type of encryption is it?
Answer: Varies; Varies
Review Questions, Lab 7-3
1.
What bandwidth designations do 802.11b and 802.11g radios have in common?
Answer: 1, 2, 5.5, 11 Mbps
2.
What is the relationship between signal-to-noise ratio and distance?
Answer: SNR decreases as distance from the access point increases.
3.
Network Stumbler can find rogue access points. True or False?
Answer: True
4.
List some reasons why Network Stumbler is so widely used.
Answer: Network Stumbler is free, it uses no special drivers, and it can transmit and receive while
evaluating the wireless network.
5.
What is your opinion of Network Stumbler as a tool for monitoring wireless networks?
Answer: Opinion varies.