Distributed sniffer products

Owen DeLong owen at delong.com
Wed Sep 3 18:54:25 UTC 2003


OK... I'll leave the XP thing al0wned.

As to the linux solution, why would you bother with VNC rather than just
ssh.  Pull the libpcap file back to a local desktop for analysis in 
ethereal.

Owen


--On Wednesday, September 3, 2003 11:26 AM -0700 Luke Starrett 
<lstarrett at nc.rr.com> wrote:

>
> I took a different approach and run a Windows XP machine with multiple
> network cards to the segments that I regularly need to sniff.  I use the
> remote desktop feature to access the box.  It has one NIC for regular
> connectivity, and a couple others that are just used for sniffing.
> Others are using cheap linux boxes running ethereal in a similar fashion
> using VNC to access the box.
>
> Luke
>
>> -----Original Message-----
>> From: owner-nanog at merit.edu [mailto:owner-nanog at merit.edu] On
>> Behalf Of Austad, Jay
>> Sent: Wednesday, September 03, 2003 11:08 AM
>> To: 'nanog at merit.edu'
>> Subject: Distributed sniffer products
>>
>>
>>
>> Anyone have any experience with these?  I'm looking for
>> something similar to Network Associates Sniffer product.
>>
>> Are there any open source projects that are decent?  What are
>> others using?
>>
>> ----------------
>> Jay Austad
>> Senior Network Analyst
>> Travelers Express / MoneyGram
>> e: jaustad at temgweb.com p: 952.591.3779
>>
>





More information about the NANOG mailing list