Difference between revisions of "Ethereal/Wireshark"

From MikroTik Wiki
Jump to: navigation, search
(Add content to Wireshark)
(No difference)

Revision as of 09:39, 16 September 2008

MikroTik RouterOS configuration

Configure sniffer to stream to device running wireshark,

/tool sniffer set streaming-enabled=yes streaming-server=ip.of.wireshark.box 
/tool sniffer start

Ethereal/Wireshark configuration

Wireshark is commonly used network protocol analyzer for Unix and Windows, it's available for free download from project homepage, http://www.wireshark.org/

To accept sniffer TZSP stream, you have to set the configuration,

  • Make sure you accept UDP in Wireshark (as TZSP uses UDP to transport data);
  • You may need to disable WCCP protocol in wireshark (Analyze/Enabled Protocols), as that collides with TZSP and by default frames may be considered WCCP, not TZSP;
  • For streaming wireless sniffer captures (interface wireless sniffer), make sure you have newest wireshark and newest routeros.