Wireshark-dev: Re: [Wireshark-dev] Missing Interface Name on Windows Vistaforwireshark

From: "Gianluca Varenni" <gianluca.varenni@xxxxxxxxxxxx>
Date: Thu, 8 Nov 2007 08:04:53 -0800

----- Original Message ----- From: <coolusee@xxxxxxxxx>
To: "Developer support list for Wireshark" <wireshark-dev@xxxxxxxxxxxxx>
Sent: Thursday, November 08, 2007 5:11 AM
Subject: Re: [Wireshark-dev] Missing Interface Name on Windows Vistaforwireshark


Hi ,
I have attached the ipconfig -a output.
Sorry its in Norwegian but the `PPP-kort Nokia 6680 GGSN PH3` is not displayed at all.

It makes sense. It's listed as "PPP..." so it's probably dialup-like.

Can anyone trace on a interface that is not listed by wireshark I mean using a MAC address or something ?
Can wireshark display hidden interfaces ?

No. Wireshark uses WinPcap to capture packets. It doesn't have any built-in capture capabilities. and unfortunately WinPcap doesn't support dialup-like capture on Vista. The reason is that WinPcap uses the Microsoft NetMon component to capture from dialup, and NetMon is not an inbox component of Vista.

Have a nice day
GV


Microsoft Windows [Versjon 6.0.6000]
Copyright (c) 2006 Microsoft Corporation. Med enerett.

C:\Users\yngve>ipconfig /all

Windows IP-konfigurasjon

  Vertsnavn   . . . . . . . . . . . : yngve-laptop
  Primær DNS-suffiks  . . . . . . . :
  Nodetype  . . . . . . . . . . . . : Hybrid
  IP-ruting aktivert  . . . . . . . : Nei
  WINS Proxy aktivert . . . . . . . : Nei

PPP-kort Nokia 6680 GGSN PH3:

  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : Nokia 6680 GGSN PH3
  Fysisk adresse  . . . . . . . . . :
  DHCP aktivert . . . . . . . . . . : Nei
  Automatisk konfigurasjon aktivert : Ja
  IPv4-adresse. . . . . . . . . . . : 10.59.20.219(Foretrukket)
  Nettverksmaske . . . . . . . . . .: 255.255.255.255
  Standard gateway . . . . . . . . .: 0.0.0.0
  DNS-servere . . . . . . . . . . . : 172.28.225.11
                                      172.28.225.11
  NetBIOS over Tcpip. . . . . . . . : Deaktivert

Ethernet-kort Lokal tilkobling* 7:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
Beskrivelse . . . . . . . . . . : Check Point Virtual Network Adapter For
ecureClient
  Fysisk adresse  . . . . . . . . . : 54-18-B8-39-0E-0E
  DHCP aktivert . . . . . . . . . . : Ja
  Automatisk konfigurasjon aktivert : Ja

Trådløst LAN-kort Trådløs nettverkstilkobling:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  : domain.actdsltmp
Beskrivelse . . . . . . . . . . : Intel(R) PRO/Wireless 3945ABG Network Co
nection
  Fysisk adresse  . . . . . . . . . : 00-1B-77-B5-C7-61
  DHCP aktivert . . . . . . . . . . : Ja
  Automatisk konfigurasjon aktivert : Ja

Ethernet-kort Lokal tilkobling:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : Broadcom NetLink (TM) Fast Ethernet
  Fysisk adresse  . . . . . . . . . : 00-15-C5-7E-BB-7F
  DHCP aktivert . . . . . . . . . . : Ja
  Automatisk konfigurasjon aktivert : Ja

Tunnelkort Lokal tilkobling*:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
  Fysisk adresse  . . . . . . . . . : 02-00-54-55-4E-01
  DHCP aktivert . . . . . . . . . . : Nei
  Automatisk konfigurasjon aktivert : Ja

Tunnelkort Lokal tilkobling* 9:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : 6TO4 Adapter
  Fysisk adresse  . . . . . . . . . : 00-00-00-00-00-00-00-E0
  DHCP aktivert . . . . . . . . . . : Nei
  Automatisk konfigurasjon aktivert : Ja

Tunnelkort Lokal tilkobling* 10:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : 6TO4 Adapter
  Fysisk adresse  . . . . . . . . . : 00-00-00-00-00-00-00-E0
  DHCP aktivert . . . . . . . . . . : Nei
  Automatisk konfigurasjon aktivert : Ja

C:\Users\yngve>


Regards,
Sameer


----- Original Message ----
From: Gianluca Varenni <gianluca.varenni@xxxxxxxxxxxx>
To: Developer support list for Wireshark <wireshark-dev@xxxxxxxxxxxxx>
Sent: Wednesday, November 7, 2007 4:16:38 PM
Subject: Re: [Wireshark-dev] Missing Interface Name on Windows Vista forwireshark

I think that those interfaces are exported as dialup connections. Under
Vista WinPcap does *not* support dialup-like interfaces.

Can you please post the output of ipconfig -a?

Thanks
GV


----- Original Message ----- From: <coolusee@xxxxxxxxx>
To: <Wireshark-dev@xxxxxxxxxxxxx>
Sent: Wednesday, November 07, 2007 5:32 AM
Subject: [Wireshark-dev] Missing Interface Name on Windows Vista
forwireshark


Hi,

I intend to use Wireshark to capture packets on a network interface that
is basically a USB connected mobile device, the latter acts as a modem.
The Operating System I am using is Windows Vista.

When I open the Wireshark Capture option it does not list the network
interface connected to the Mobile device and hence I cannot capture any
packets on that specific interface.

When I do an ipconfig –a option on the Command prompt I can see a IP
address allocated to my workstation with some other requisite entries. I
can even browse through on the web whilst connected through the modem..

Can someone suggest a way in which I can see the network Interface in my
capture Screen of wireshark on Windows Vista?

Has anyone else encountered this problem earlier or have I missed out on
anything?

This problem definitely does not arise when using Wireshark on Windows XP.
I have encountered this problem using 2 different mobile devices Samsung
and Nokia.


Regards,
Sameer

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
_______________________________________________
Wireshark-dev mailing list
Wireshark-dev@xxxxxxxxxxxxx
http://www.wireshark.org/mailman/listinfo/wireshark-dev

_______________________________________________
Wireshark-dev mailing list
Wireshark-dev@xxxxxxxxxxxxx
http://www.wireshark.org/mailman/listinfo/wireshark-dev

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
_______________________________________________
Wireshark-dev mailing list
Wireshark-dev@xxxxxxxxxxxxx
http://www.wireshark.org/mailman/listinfo/wireshark-dev