Ethereal-users: Re: [Ethereal-users] How-to?

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: Guy Harris <guy@xxxxxxxxxx>
Date: Mon, 10 Dec 2001 10:57:06 -0800 (PST)
> > How do I use ethereal to monitor  send/receive traffics between two specific
> > hosts
> 
> Step 1: either run Ethereal on one of the two hosts, or make sure that
> the two hosts are on a broadcast network (Ethereal, Token Ring, FDDI,
> 802.11) and that either
> 
> 	1) the network is *not* switched (i.e., the machines are not
> 	   plugged into a switch or a switching hub)
> 
> or
> 
> 	2) the port into which the machine running Ethereal is plugged
> 	   is on a port that is set up to "mirror" traffic to the ports
> 	   the other two machines are on.  (Some switches let you do
> 	   this, some switches don't; you'd have to read the
> 	   documentation for your switch to see if it's possible and, if
> 	   it is, how to do it.)

Those two don't apply to 802.11, of course - but there are other issues
for sniffing 802.11 traffic between two machines when running on a third
machine.  See

	http://www.ethereal.com/faq.html#q3.16