[61701] in North American Network Operators' Group
RE: Distributed sniffer products
daemon@ATHENA.MIT.EDU (Owen DeLong)
Wed Sep 3 15:06:53 2003
Date: Wed, 03 Sep 2003 11:54:25 -0700
From: Owen DeLong <owen@delong.com>
To: Luke Starrett <lstarrett@nc.rr.com>,
"'Austad, Jay'" <JAustad@temgweb.com>, nanog@merit.edu
In-Reply-To: <003f01c37248$ef7dd9c0$9aae6b80@lstarretwinxp>
Errors-To: owner-nanog-outgoing@merit.edu
OK... I'll leave the XP thing al0wned.
As to the linux solution, why would you bother with VNC rather than just
ssh. Pull the libpcap file back to a local desktop for analysis in
ethereal.
Owen
--On Wednesday, September 3, 2003 11:26 AM -0700 Luke Starrett
<lstarrett@nc.rr.com> wrote:
>
> I took a different approach and run a Windows XP machine with multiple
> network cards to the segments that I regularly need to sniff. I use the
> remote desktop feature to access the box. It has one NIC for regular
> connectivity, and a couple others that are just used for sniffing.
> Others are using cheap linux boxes running ethereal in a similar fashion
> using VNC to access the box.
>
> Luke
>
>> -----Original Message-----
>> From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On
>> Behalf Of Austad, Jay
>> Sent: Wednesday, September 03, 2003 11:08 AM
>> To: 'nanog@merit.edu'
>> Subject: Distributed sniffer products
>>
>>
>>
>> Anyone have any experience with these? I'm looking for
>> something similar to Network Associates Sniffer product.
>>
>> Are there any open source projects that are decent? What are
>> others using?
>>
>> ----------------
>> Jay Austad
>> Senior Network Analyst
>> Travelers Express / MoneyGram
>> e: jaustad@temgweb.com p: 952.591.3779
>>
>
