Wireshark · Ethereal-users: [Ethereal-users] Question on Ethereal capabilities

Ethereal-users: [Ethereal-users] Question on Ethereal capabilities

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: "Woeltje, Donald" <dwoeltje@xxxxxxxxxxx>

Date: Fri, 24 Jun 2005 12:10:10 -0500

I have limited exposure to Ethereal (which I’m attempting to correct). I have some rudimentary questions.

Does Ethereal have an “expert mode” analysis capability…….or is the user the “expert mode”?

2. Is Ethereal a protocol analyzer only? I’ve been told that can also operate as an IDS. But I don’t see how that’s possible…..unless you just have it capture everything and then you spend hours analyzing the traffic for potential security events.

Don Woeltje

Senior Information Security Analyst

CISSP, MCSE, CNE, CCNA, CNX, DCVE, 3Com 3Wizrard

Location 2G-420, Carlson Technology Center

1405 Xenium, Minneapolis, MN

Work Ph# 1-763-212-2684

Follow-Ups:
- Re: [Ethereal-users] Question on Ethereal capabilities
  - From: Guy Harris
- [Ethereal-users] Re: Question on Ethereal capabilities
  - From: ronnie sahlberg

Prev by Date: [Ethereal-users] MS Loopback adapter question
Next by Date: [Ethereal-users] double packets on Win 2000
Previous by thread: Re: [Ethereal-users] Re: MS Loopback adapter question
Next by thread: Re: [Ethereal-users] Question on Ethereal capabilities
Index(es):
- Date
- Thread