Search results for query: *

The only sure-fire way of doing this is to deploy a wireless IDS/IPS system like AirDefense. (www.airdefense.net). They can terminate Rogue APs as they are seen and also look for many other issues as well. Spence P

Check out www.niksun.com. They have a number of writeups on how you can use an analyzer to see virii and worms traffic. SpenceP

Sniffer does not support non-ATM E3, just T3/DS3. You could try NIKSUN NetVCR (www.niksun.com), they provide an E3 Analyzer. SpenceP

You also might want to check out the most powerful Distributed Analyzer in the Marketplace today, NIKSUN NetVCR (www.niksun.com). These guys have been cleaning up against NetScout and Sniffer recently becuase they give you the ability to capture vast amounts of packets into a wrap database (from...

You could use a freeware program like Ethereal to capture the traffic (www.ethereal.com) and export the traffic from this in Sniffer format and use Sniffer for the decodes SpenceP

Unfortunately if your applications do not use standard port numbers still has no "decode as" functionality. You can put the trace files into a freeware program like Ethereal for this. SpenceP

Hi Everyone, Unfortunately, Sniffer does not decode WCP protocol. The only network Analyzer that does this well is the NetVCR product from Niksun (www.niksun.com). They decompress WCP traffic and store it uncompressed on their raid disks. It can then be exported to Sniffer format or decoded...

Also don't forgot that if your software license is for Sniffer PRO LAN only, not Portable Analysis suite, then you are not licensed for use at Gigabit speeds. The design of the software is such that it detects the card is Gigabit and then tries to load it's internal gigabit drivers as it is the...

Also don't forgot that if you software license is for Sniffer PRO LAN only, not Portable Analysis suite, then you are not licensed for use at Gigabit speeds. The design of the software is such that it detects the card is Gigabit and then tries to load it's internal gigabit drivers as it is the...

When you install the agent on the machine it creates a drivers directory under program files\nai\dsproagentnt\, the LM2000 drivers can be found in here. Spencer P

Sniffer.sys is the driver which interfaces at the NDIS layer to capture traffic. As this is installed as a service it will always be present in memory, even if it is not actively used. Spencer P

The Sniffer is only designed to be used at Gigabit speeds with the NAI Gigabit analysis card. Because of the bottleneck of the PCI bus the Sniffer software is just not capable of wirespeed capture with a standard NIC. The NAI card, by using FPGA technology, is able to work at Full Duplex full...

Sniffer PRO cannot print it's summary decodes in colour. The only way to do this is to take a screen capture and print the graphics file. The best tool for screen capture is SnagIT. This can auto-scroll down the summary screen for you and print the screen to a large graphics file. Spencer...

Hi Elca, Unfortunately you have found one of the down sides of annotating the Expert Explain files. In the program directory of Sniffer you will find a file call xphelp.hlp. This contains all of the expert help details. Any annotations will be added to this file. You can back this up or share...

If people would find it useful, I'll write a Triggers FAQ for the site. I train customers at least once a week on this subject so I should be able to come up with a "Triggers Basics" guide fairly quickly. Spencer Parker Axial Systems

HI Mike, Glad to hear the trigger worked fine. The trigger is one of the most powerful features in Sniffer yet the documentation is very poor. The best tip I can give you with the trigger function is follow the flow diagram it shows and you should be fine. Spence Axial

Hi Mike, I will try to recreate the problem in the lab and see if I can reproduce it. Have you got Win2K SP1 installed? Sniffer doesn't really rely on INI files any more. Most of the settings are now in the registry. On WIN2K I recommend that you back up the HKEY_LOCAL_MACHINE\Software\Network...

HI Mike, Try the following... 1. Alter the Broadcast storm settings in tools>Expert Options>Alarms to an acceptable level depending on the speed of the network you are analysing. 2. Go to Capture>Define Filter. Create a new capture filter which saves to hard disk but captures everything. Set...

When getting errors like this with Switch Expert, try tracing SNMP at the same time. See if the read and write community strings are correct by looking at the packets themselves. Also there are two modes of operation for Switch Control. 1. Connected to Sniffer>No This means that you can just...

With regard to your intrepretation of the Global Statistics screen, you say you are gettings 10% utilisation constantly. Try to think of the GS screen to be a time based screen. IF you are getting 100% of traffic in the first bar it means that since you started the GS screen, 100% of the traffic...