[Joe Tomasone <joe@xxxxxxxx>]

To use Ethereal to monitor 802.11 frames requires (at this time) a Linux 
system running a utility called "Prismdump", to which links can be found on 
the Ethereal site.  Prismdump will put a Prism-II based 802.11 card into 
monitor mode and dump the received frames.   This can be piped to a FIFO 
file that can be read by Ethereal.  This is normally used in conjunction 
with the linux-wlan-ng package, which gives you the ability to specify 
which of the 11 channels you'd care to monitor.   Common Prism-II based 
cards (that can be found at, say, CompUSA, Best Buy, etc) include SMC, 
Linksys, and D-Link.  The downside?  It is difficult to find Prism-II based 
cards with external antenna jacks, so you are normally limited to the 
built-in antenna.

The Cisco card is not PrismII based, and therefore cannot be used as I 
described above.  I do not know of any driver other than the one for 
AiroPeek that will put that card into monitor mode.


        - Joe



At 10:28 AM 11/26/2001, you wrote:

> Dear All,
>
>
>
> After following some of the posts here and much frustrations with trying 
> to get raw mode in Windows, I have decided to learn Linux instead.
>
>
>
> So, I have gotten all these already: Red-Hat 7.2, Cisco Aironet350, a 
> notebook that works, and Ethereal(included in RH7.2).
>
>
>
> What do I have to do now to capture in Raw mode??
>
>
>
> Any Advise?
>
>
>
> Thanx
>
> Darren