Wireshark-dev: Re: [Wireshark-dev] Missing Interface Name on Windows Vistaforwireshark
From: "Gianluca Varenni" <[email protected]>
Date: Thu, 8 Nov 2007 08:04:53 -0800
----- Original Message ----- 
From: <[email protected]>
To: "Developer support list for Wireshark" <[email protected]>
Sent: Thursday, November 08, 2007 5:11 AM
Subject: Re: [Wireshark-dev] Missing Interface Name on Windows Vistaforwireshark

Hi ,
I have attached the ipconfig -a output.
Sorry its in Norwegian but the `PPP-kort Nokia 6680 GGSN PH3` is not displayed at all.
It makes sense. It's listed as "PPP..." so it's probably dialup-like.
Can anyone trace on a interface that is not listed by wireshark I mean 
using a MAC address or something ?
Can wireshark display hidden interfaces ?
No.  Wireshark uses WinPcap to capture packets. It doesn't have any built-in 
capture capabilities. and unfortunately WinPcap doesn't support dialup-like 
capture on Vista. The reason is that WinPcap uses the Microsoft NetMon 
component to capture from dialup, and NetMon is not an inbox component of 
Vista.
Have a nice day
GV

Microsoft Windows [Versjon 6.0.6000]
Copyright (c) 2006 Microsoft Corporation. Med enerett.

C:\Users\yngve>ipconfig /all

Windows IP-konfigurasjon

  Vertsnavn   . . . . . . . . . . . : yngve-laptop
  Primær DNS-suffiks  . . . . . . . :
  Nodetype  . . . . . . . . . . . . : Hybrid
  IP-ruting aktivert  . . . . . . . : Nei
  WINS Proxy aktivert . . . . . . . : Nei

PPP-kort Nokia 6680 GGSN PH3:

  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : Nokia 6680 GGSN PH3
  Fysisk adresse  . . . . . . . . . :
  DHCP aktivert . . . . . . . . . . : Nei
  Automatisk konfigurasjon aktivert : Ja
  IPv4-adresse. . . . . . . . . . . : 10.59.20.219(Foretrukket)
  Nettverksmaske . . . . . . . . . .: 255.255.255.255
  Standard gateway . . . . . . . . .: 0.0.0.0
  DNS-servere . . . . . . . . . . . : 172.28.225.11
                                      172.28.225.11
  NetBIOS over Tcpip. . . . . . . . : Deaktivert

Ethernet-kort Lokal tilkobling* 7:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
Beskrivelse . . . . . . . . . . : Check Point Virtual Network Adapter For
ecureClient
  Fysisk adresse  . . . . . . . . . : 54-18-B8-39-0E-0E
  DHCP aktivert . . . . . . . . . . : Ja
  Automatisk konfigurasjon aktivert : Ja

Trådløst LAN-kort Trådløs nettverkstilkobling:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  : domain.actdsltmp
Beskrivelse . . . . . . . . . . : Intel(R) PRO/Wireless 3945ABG Network Co
nection
  Fysisk adresse  . . . . . . . . . : 00-1B-77-B5-C7-61
  DHCP aktivert . . . . . . . . . . : Ja
  Automatisk konfigurasjon aktivert : Ja

Ethernet-kort Lokal tilkobling:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : Broadcom NetLink (TM) Fast Ethernet
  Fysisk adresse  . . . . . . . . . : 00-15-C5-7E-BB-7F
  DHCP aktivert . . . . . . . . . . : Ja
  Automatisk konfigurasjon aktivert : Ja

Tunnelkort Lokal tilkobling*:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
  Fysisk adresse  . . . . . . . . . : 02-00-54-55-4E-01
  DHCP aktivert . . . . . . . . . . : Nei
  Automatisk konfigurasjon aktivert : Ja

Tunnelkort Lokal tilkobling* 9:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : 6TO4 Adapter
  Fysisk adresse  . . . . . . . . . : 00-00-00-00-00-00-00-E0
  DHCP aktivert . . . . . . . . . . : Nei
  Automatisk konfigurasjon aktivert : Ja

Tunnelkort Lokal tilkobling* 10:

  Medietilstand . . . . . . . . . . : Medium frakoblet
  Tilkoblingsspesifikt DNS-suffiks  :
  Beskrivelse   . . . . . . . . . . : 6TO4 Adapter
  Fysisk adresse  . . . . . . . . . : 00-00-00-00-00-00-00-E0
  DHCP aktivert . . . . . . . . . . : Nei
  Automatisk konfigurasjon aktivert : Ja

C:\Users\yngve>


Regards,
Sameer


----- Original Message ----
From: Gianluca Varenni <[email protected]>
To: Developer support list for Wireshark <[email protected]>
Sent: Wednesday, November 7, 2007 4:16:38 PM
Subject: Re: [Wireshark-dev] Missing Interface Name on Windows Vista forwireshark
I think that those interfaces are exported as dialup connections. Under
Vista WinPcap does *not* support dialup-like interfaces.

Can you please post the output of ipconfig -a?

Thanks
GV


----- Original Message ----- From: <[email protected]>
To: <[email protected]>
Sent: Wednesday, November 07, 2007 5:32 AM
Subject: [Wireshark-dev] Missing Interface Name on Windows Vista
forwireshark


Hi,

I intend to use Wireshark to capture packets on a network interface that
is basically a USB connected mobile device, the latter acts as a modem.
The Operating System I am using is Windows Vista.

When I open the Wireshark Capture option it does not list the network
interface connected to the Mobile device and hence I cannot capture any
packets on that specific interface.

When I do an ipconfig –a option on the Command prompt I can see a IP
address allocated to my workstation with some other requisite entries. I
can even browse through on the web whilst connected through the modem..

Can someone suggest a way in which I can see the network Interface in my
capture Screen of wireshark on Windows Vista?

Has anyone else encountered this problem earlier or have I missed out on
anything?

This problem definitely does not arise when using Wireshark on Windows XP.
I have encountered this problem using 2 different mobile devices Samsung
and Nokia.


Regards,
Sameer

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
_______________________________________________
Wireshark-dev mailing list
[email protected]
http://www.wireshark.org/mailman/listinfo/wireshark-dev
_______________________________________________
Wireshark-dev mailing list
[email protected]
http://www.wireshark.org/mailman/listinfo/wireshark-dev

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
_______________________________________________
Wireshark-dev mailing list
[email protected]
http://www.wireshark.org/mailman/listinfo/wireshark-dev