Wireshark · Wireshark-users: Re: [Wireshark-users] Sniffing Cisco VPN packets

Wireshark-users: Re: [Wireshark-users] Sniffing Cisco VPN packets

From: Ulf Lamping <ulf.lamping@xxxxxx>

Date: Wed, 16 May 2007 07:27:26 +0200

George A. Kantsios wrote:

Need a little help and appreciate any guidance and direction you can offer.  I am trying to sniff packets before and after a cisco VPN adapter on a Windows XP box. When I sniff the VPN adapter I see the unencrypted packets.  When I sniff the physical network device, I get almost no traffic, even when I send a huge file over the network?  Why can't I see the encrypted packets

Well, given the fact that there were lot's of problems with VPN software(incl. Cisco VPN) reported - from not seeing any interfaces to crashingvarious software parts, I would say you can be glad that you see anytraffic at all ...

See http://wiki.wireshark.org/CaptureSetup/InterferingSoftware for somemore details and http://wiki.wireshark.org/CaptureSetup in general.


Regards, ULFL

Follow-Ups:
- Re: [Wireshark-users] Sniffing Cisco VPN packets
  - From: andre.noel

References:
- [Wireshark-users] Sniffing Cisco VPN packets
  - From: George A. Kantsios

Prev by Date: [Wireshark-users] decoding part of a SOCKS message as XML
Next by Date: Re: [Wireshark-users] Sniffing Cisco VPN packets
Previous by thread: [Wireshark-users] Sniffing Cisco VPN packets
Next by thread: Re: [Wireshark-users] Sniffing Cisco VPN packets
Index(es):
- Date
- Thread