What Network Sniffing Tools Do You Use?
network-nose asks: "I work as a Network Administrator in a 500 user manufacturing facility in southeastern Wisconsin. My job is to keep the company running as close to 100% of the time as possible while trying not to spend any money on up to date hardware and software. As of late, we have been having quite a few network problems that can only really be resolved by sniffing packets. I am wondering what tools the rest of you network guys and gals out there use in a corporate environment for analyzing packets. Of course, the more reasonbly priced the better, but I know you usually get what you pay for."
My job is to keep the company running as close to 100% of the time as possible while trying not to spend any money on up to date hardware and software
Are you trying to steal my job?Wait! Wait!
:P
Don't mark me offtopic yet!
Between sniffing different, strong scents (geeks, think about it), coffee beans are perfect for clearing you sense of smell.
That being said. Ethereal.
Anyway, try it sometime. Works well. Lots of people who sell the better kinds of incense will keep (good) coffee beans around for precisely this purpose.
Karma: Chameleon (mostly due to the fact that you come and go).
.....an Oscilliscope. Read the bits off the wire. You'd be suprised what an Oscilliscope in the hands of a VERY well trained person can accomplish.
Of course, the more reasonbly priced the better, but I know you usually get what you pay for.
This is Slashdot, you'll lose an eye here faster than you will in a barfight for saying that free (beer and speech) GNU/Linux isn't better than costly (money and your soul) Windows!
LK
"Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
I sniff with Olfactory 1.0.
Karma: -2147483648 (Mostly affected by integer overflow)
But it can hurt you. :-* with another guy.
I really wish I hadn't been sniffing IM when my recently broken up girlfriend was over. I don't want to see her
XML causes global warming.
One of the common network administration problems that software tools aren't very good at is finding where wires go when they're behind furniture or walls. Wires are pretty much like string, and my cats like to chase string, so I send them out to chase the wires, listen for the thumping noises, and see where the cat comes out. Doesn't work every time, and sometimes they'd rather chase mice than wires, but one of my cats really like chomping on RJ45 jacks, so if I suspect that a problem is related to an unplugged RJ45, he's the one for the job.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
My nose is indispensable OTJ. If a network card stops working, or is flaky I simply pop it out and smell for burned silicon.
I found it works with routers, switches, hubs and servers too.
Well I use my own special homemade Network sniffer, let me explain it, its a BIG Rubber nose on a BIG Stick with cat 5 hanging out the nostrils. It works GREAT Walk into someones office with that and they start rambling about all the programs they are running , have run, could run, and want to run, MOST likley out of fear of what you are going to do with the rubber nose on the stick, or maybe just because they are scared someone actually spent the time and built it.
For the people who like useless links: You are here.
Tarsnap: Online backups for the truly paranoid
Actually, you sound like a kid who just got a job at a company who has 500+ employees, and wants to sniff their traffic.
:)
:) tethereal is great too (comes with Ethereal). tcpdump is the grand-daddy of all packet sniffers, so it's kinda handy to know how to use it.
:)
You'll learn and get caught. But who am I to stop you from a life experience.
ethereal is great. It's proven to be lots of fun.
For wireless, I use Wellenreiter and Kismet.
Sitting in a major Las Vegas hotel, only a few floors up from the casino, I turned on my laptop, hoping to find an access point I could get online with (damned hotel didn't provide Internet access). I heard two AP's, and caught a couple IP's going by. I assigned myself an IP which appeared to not be used, and fired up ethereal.
I saw text for several of the casino machines going by. It was the text to be updated to the displays, including windows paths to where the files originated from (I believe). It was all in plain text. I noted down what I saw for a few minutes, shut down the laptop, and proceeded to lose for the rest of the night in the casino. Hey, that's what Vegas is for, right?
After I got home, I dug around for something resembling an admin contact at the casino, and advised him of what I saw. It would have probably been pretty easy to push my own updates to the machines. What would I say though?
"Gambing is an addiction, quit now."
"This game is rigged, move on."
"This is the droid you are looking for."
"With a 97% chance of losing, did you really want to play this game?"
or, I guess
"I'm a spiffy keen elite haxor type person, props to my homeyz" haha
Serious? Seriousness is well above my pay grade.
^H is geek for "I can't configut^Hre my terminal correctly"
Its great for obtaining user's passwords... you can never be too weary of terrorists. ;-)
It's not like you need to know the secret handshake before you can become a network administrator.
Actually, you do.
somebody bent my whookey.
You youngin's don't know how good you got it. Why, back in my day we didn't have no fancy, schmancy network sniffers. We just power cycled the boxes until they started working right (or until quitting time, whichever came first).
*mumbles* gotta teach these whipper snappers a thing or two - next they'll need some lessons in percussive maintenance
EMACS is an acronym for one of its normal key sequences, yes ? ESC-Meta-ALT-CTRL-Shift ? ;->
Hrm. Are they aware that their handshake is the international symbol also known as the shocker?"
'cause, you know. Ew.