Ethereal-users: RE: [Ethereal-users] Ethereal, Analyzer, PGPnet VPN, and Windows ME OS

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: "Fulvio Risso" <risso@xxxxxxxxx>
Date: Wed, 23 May 2001 09:06:01 +0200
Hi Scott.
The problem is, always, money.
We can investigate why PGP (and some other products) conflicts with WinPcap;
however:
- this has no value for research purposes (no publications)
- we get no money for that

So, why investigate that? We don't think everything can be done for free.
We're looking some company that is willing to give us a grant for that.
Anyone interested? Suggestions?

	fulvio


> -----Original Message-----
> From: ethereal-users-admin@xxxxxxxxxxxx
> [mailto:ethereal-users-admin@xxxxxxxxxxxx]On Behalf Of Scott Celt
> (Yahoo)
> Sent: Wednesday, May 23, 2001 03:39
> To: Loris Degioanni
> Cc: WinPcap/Ethereal Users
> Subject: [Ethereal-users] Ethereal, Analyzer, PGPnet VPN, and Windows ME
> OS
>
>
> Hi Loris!
>
> Thanks so much for your prompt reply!
>
> L> Winpcap, and therefore analyzer and ethereal, work on Windows ME
>
> You are *correct,* and I know this because after I read what you said, I
> tried some new ideas to get things working.  And, I was *successful* in
> getting *both* Ethereal and Analyzer (WinPcap engine) to work on my Win
> ME OS, PPP DUN dialup adapter system.
>
> What was happening is that I have PGP 7.0.3 installed
> (http://www.pgp.com), which included the PGPnet VPN encryption software.
> This introduces some PGPnet TCP/IP 'Virtual Adapters' into the WinME
> Network setup.  It was these PGPnet TCP/IP drivers which were causing
> the Ethereal and Analyzer to crash after opening in the manner that I
> described below.  What I did was *uninstall* the PGPnet, and reinstall
> both the Ethereal 0.8.17 and the Analyzer 2.1 (*not* beta), and *both*
> of them then worked *perfectly.*
>
> Of course, the reason I wanted to use the Ethereal and/or Analyzer
> software was to observe the *encryption* of the PGPnet VPN, to see if it
> worked on certain IP to IP software (MS Netmeeting for example).  And so
> I therefore *reinstalled* back the PGPnet 7.0.3 over the top of my now
> properly functioning Ethereal and Analyzer setup.
>
> To my dismay, the Ethereal would *not* function properly, and went back
> to crashing in 'Blue Screen' mode, with the message already described
> below (previous message).  However, the *Analyzer* DID continue to
> function properly, much to my *great* pleasure.  But, when using
> Analyzer, if I attempt to *reset* the "Set Default Adapter" menu choice,
> then Analyzer *immediately* crashes too into the 'Blue Screen' mode
> described below.  So, from this, I have concluded that *probably* the
> PGPnet VPN drivers are somehow written in a manner that conflicts with
> WinPcap in some fairly important way.  Hopefully the authors of WinPcap
> (Loris?) will have some ideas as to what the problem more precisely is.
> Also, I could wish that another WinME OS PC user experiences the *same*
> conditions that happen to me using Ethereal, Analyzer, WinPcap, and
> PGPnet VPN.
>
> L > Can you tell me what happens installing windump and typing
> 'windump -D'?
>
> At present, I do *not* have WinDump installed on my WinME OS PC.  If
> installing it and running WinDump would help to debug the exact nature
> of the WinPcap and PGPnet VPN problem, I would be willing to install it
> and try to use it.  Just say the word, and what you want me to try with
> WinDump, as I have never used it before.
>
> So, in a sense, my Ethereal/Analyzer problems have ended up on a fairly
> positive note at this point.  I *am* able to capture packets with the
> Analyzer, and it suits my purposes just fine (observing PGPnet VPN
> encryption).  I wish that I could use the Ethereal software with my
> PGPnet VPN, but that seems *not* possible.
>
> I've included an attached picture of my Network setup from WinME OS,
> just in case someone wanted to see the actual PGPnet VPN entries there.
>
> Again Loris, *thanks* for your timely and encouraging reply.  If there
> is anything that I can do to assist you in further exploring this
> WinPcap and PGPnet VPN conflict (under WinME OS), please let me know.
>
> Scott ( celts2u@xxxxxxxxx )
>
> P.S.  I just saw in the news where Microsoft cut a deal with McAfee.com
> ( http://www.nai.com ) for "Virus and VPN privacy/encryption" type
> integration into Microsoft products.  McAfee stock went up 50% in one
> day  --  *missed* that one!  Looks like Windows OS users may be seeing
> *more* of PGP encryption type software soon.  ;-)
>
>
>
> ----- Original Message -----
> From: "Loris Degioanni" <loris@xxxxxxxxxxxxxxxxxxxxxxx>
> To: "Scott Celt (Yahoo)" <celts2u@xxxxxxxxx>
> Cc: <ethereal-users@xxxxxxxxxxxx>
> Sent: Monday, May 21, 2001 1:23 AM
> Subject: Re: [Ethereal-users] Ethereal and Windows ME OS
>
>
> Winpcap, and therefore analyzer and ethereal, work on windows ME, but
> not on
> your system, probably because of a bug in the packet driver. Can you
> tell me
> what happens installing windump and typing 'windump -D'?
>
> Loris.
>
>
> > Hi Everyone!
> >
> > I have a Windows ME OS PC, and have been trying to get either Ethereal
> > or Analyzer packet sniffer working on my PC, *without* luck.
> >
> > I can install and *open* either program successfully.  But, when I try
> > to *do* anything with either program, they *both* immediately crash
> with
> > the (approximate) following message in the 'Blue Screen of Death'
> mode:
> >
> > "Exception 0E in VxD PPPMAC(01) ...
> >  This was called (from) ... VxD NDIS(01) ... "
> >
> > I get this *exact* same crash message on *both* Analyzer and Ethereal.
> >
> > So, I looked in the HELP documentation of the *beta* Analyzer 2.1, and
> > it states there that Win ME OS is NOT SUPPORTED.
> >
> > And I suspect this is *also* true for the Ethereal software too, that
> > Win ME does *not* work properly for it.  The Ethereal FAQ states that
> > "Windows ME should work."  But I suspect that this is *not* the case.
> >
> > Anyway, if you know of *anyone* that has gotten Ethereal to work with
> > the Windows ME OS, please let me know.  I'd be interested in asking
> them
> > what they did to accomplish that.
> >
> > In the meantime, my *advise* to you is to state in any messages where
> > you recommend Ethereal or Analyzer packet sniffers that:
> >
> > (1)  Analyzer 2.1 *beta* does *not* work with Win ME OS, and says so.
> >
> > (2)  It is *unclear* that Ethereal works with Windows ME OS.
> >
> > I got the CommView and SpyNet sniffers to work *briefly* for me with
> Win
> > ME OS.  But of course they are now time expired.  So, anyway, I'd like
> > to get the Ethereal packet sniffer working with my Win ME OS if
> > possible.  But I am thinking here that this will require work from the
> > authors of Ethereal and/or WinPcap, to make that happen.
> >
> > I think the statistics are that like 35% of PC users run Windows 98,
> > whereas like 2% of less run Windows ME OS.  So I'm not sure that
> Windows
> > ME working with Ethereal is all that much of a priority.  Still, if I
> > don't ask for that, surely it will not happen.  ;-)
> >
> > I just thought that you might benefit from the information in this
> > email.
> >
> > Catch you later, Scott ( celts2u@xxxxxxxxx )
> >
> > _______________________________________________
> > Ethereal-users mailing list
> > Ethereal-users@xxxxxxxxxxxx
> > http://www.ethereal.com/mailman/listinfo/ethereal-users
>
>