Newby question, perhaps this is the wrong forum for this... We are a Dell shop. I am unable to download drivers from Dell's support site. The download starts, I get about 300k of data, and then the time remaining just increments until I get a network error. I've tried it with IE, Firefox, and Chrome. All do the same thing. I've tried it on different PC's within our network, same thing. I've checked with Dell, works fine on their end. I've looked at my firewall configuration and logs (Watchguard), nothing posted except the "allow" when I connect to Dell. I ran Wireshark during a test download and filtered out everything but packets from/to the IP address of my PC. In Wireshark I can see Dell sending packets and my PC acking them for a few seconds. Then it stops with my PC sending 3 or 4 acks. Then I see a ton of DNS related entries between my PC and our DNS (hosted) most say "no such name" and then a bunch of entries from and to "deploy.akamaitechnology.com". During all this DNS/akama stuff I see Dell acking but no response from my PC. Eventually I get the network error message. Does anyone have any thoughts on this? I'm a newby to Wireshark and I don't understand all the different entries I'm seeing and they could be normal. Looking for any pointers to anything that might help me resolve this issue. Thanks. asked 03 Dec '12, 09:11  xlcfdp showing 5 of 6 show 1 more comments |
This is a static archive of our old Q&A Site.
Please post any new questions and answers at ask.wireshark.org.
I should add that downloads from any other site work just fine. I've not found a site that has the same problem.
is it possible to post that capture file (please in pcap format) somewhere?
I still have it displayed in Wireshark on my PC so I can save it in any of the Wireshark save formats. Not sure about the where though...
any one-click file hoster or cloudshark.org.
Sorry, sidetracked with another issue. I'm a bit concerned from a security standpoint of posting a capture file. How can I filter it so just the needed data is there?
if the capture file contains only the driver download from Dell, I don't see a security issue, as that's all "public" available data, except your internal IP addresses.
You can start with a filtering for the ip address of the Dell website and then export only traffic to/from that site (File -> Export). We will see, if that's enough information to analyze the problem. Regarding your internal IP addresses, you can use a pcap file anonymizer.