Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [protocol-analyzer]

9 questions
76
votes
4 answers

How to make wireshark filter POST-requests only?

How to make wireshark filter POST-requests only?
Ilya Smagin
  • 863
  • 1
  • 6
  • 6
5
votes
5 answers

Is it safe to run Wireshark on a production IIS7 server? Is there a good alternative?

We host a bunch of ASP.NET sites on an IIS7 server. Occasionally, we'd like to be able to log HTTP POST data to troubleshoot problems. IIS lets us log the query string, but not the POST data - at least, we haven't found a way. Do you think it's safe…
Richard Beier
  • 389
  • 3
  • 10
  • 17
4
votes
3 answers

Why to use a commercial packet/protocol analyzer vs. WireShark?

I have never worked in an "enterprise" infrastructure group but have been responsible for small networks. WireShark (Ethereal back in the day) always worked for me in those situations. Where is the line drawn on when to crossover? Or is it?
squillman
  • 37,618
  • 10
  • 90
  • 145
2
votes
2 answers

What are the most important skill/knowldege sets for a network administrator to have to support VOIP?

As a network administrator (Cisco switches, work with WAN providers, protocol analysis) I have an "area of responsibility" for the customer's VOIP project. The telecom group has primary responsibility for dial plans, voice mail and the monitoring…
jpolache
  • 155
  • 8
1
vote
3 answers

Understanding VOIP "sniffer" traces

My customer is doing an Avaya VOIP pilot. I am looking at traces in Wireshark to build my troubleshooting skills. I have found much documentation on VOIP, but little that focuses on protocol analysis and how the various protocols work together. I…
jpolache
  • 155
  • 8
1
vote
3 answers

DVMRP vs PIM-DM multicast protocols

Recently I've started to read RFCs of different multicast standards and came out to the question, which is not totally clear for me. I'm trying to compare DVMRP vs PIM-DM routing protocols in order to understand which one is better, which one…
Artem Barger
  • 267
  • 1
  • 4
  • 9
0
votes
3 answers

What application should I use to analyze traffic on a switch port?

I have a Cisco switch 3560 with a router for private VPN plugged into it. Unfortunately I don't have any kind of access into this router. I'm going to set a local SPAN and mirror all traffic to another port where I'll plug my sniffer. I need to…
Jindrich
  • 4,958
  • 8
  • 29
  • 42
0
votes
1 answer

can tcpdump detect higher level protocols like wireshark?

Wireshark will guess what higher level protocols are being used in a packet, but how can I get tcpdump to do likewise (or any other linux command line tool)? For example, the following screenshot shows wireshark detecting "HTTP" as the protocol…
Alexander Bird
  • 431
  • 2
  • 7
  • 14
0
votes
0 answers

SMTP "root+:"|sleep 5 #"" what is meant by this query i found it in dataset of smtp protocol

what is "root+:"|sleep 5 #" in SMTP, I have found this line in dataset of SMTP protocol I have attached a picture of dataset, any one who can help me by explaining whats happening in it. enter image description here
Etzaz M
  • 1