RE: sniffer in promiscuous mode
From: d'Ambly, Jeff (jdambly@monster.com)Date: 02/06/02
- Previous message: Scotty Perkins: "Re: Communication Software"
- Maybe in reply to: Siddharta Govindaraj: "sniffer in promiscuous mode"
- Next in thread: Smith, Chris: "RE: sniffer in promiscuous mode"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "d'Ambly, Jeff" <jdambly@monster.com> To: "'Siddharta Govindaraj'" <govind@iiitb.ac.in>, security-basics@securityfocus.com Date: Wed, 6 Feb 2002 11:43:51 -0500
That is really strange, I have used ethereal for a long time now, I would
agree that your winpcap install is messed up, there is nothing special you
need to do to get tcp packets, oh and check your filters too, good luck.
-- Jeff d'Ambly
Network Engineer
http://www.monster.com
--------------------------------
Stay the patient course.
Of little worth is your ire.
The network is up.
-----Original Message-----
From: Siddharta Govindaraj [mailto:govind@iiitb.ac.in]
Sent: Tuesday, February 05, 2002 10:04 AM
To: security-basics@securityfocus.com
Subject: sniffer in promiscuous mode
Hi,
I have a funny problem with the ethereal packet sniffer. It correctly
captures all packets entering or leaving my interface, but in promiscuous
mode, it only seems to capture ARP, NETBIOS, IPX, RIP and such protocols,
and never seems to get any UDP or TCP packets ! I have tried other sniffers,
and they all exhibit the same behaviour, so I dont think its a sniffer
problem. Is there something else I have to do to capture TCP packets ? Or
could it be something to do with Wincap ?
Thanks
Siddharta
- Previous message: Scotty Perkins: "Re: Communication Software"
- Maybe in reply to: Siddharta Govindaraj: "sniffer in promiscuous mode"
- Next in thread: Smith, Chris: "RE: sniffer in promiscuous mode"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
