This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Analysing fullduplex traffic from network TAPs

0

Hello Forum

i would like to analyze raw-traffic sent/forwarded from a fullduplex-TAP (eg IXIOS, Niagara or DATACOM). Those TAPs do forward the monitored traffic on 2 links to the analyzing station (equipped with
a dual interface network card, e.g. Endace DAG).

Question: Does Wireshark support such RAW-traffic?

Thank you very much for every feedback!

Joe

asked 15 Oct '15, 09:13

joseph123's gravatar image

joseph123
119912
accept rate: 0%

edited 15 Oct '15, 09:14

One Answer:

0

First you can start here: https://wiki.wireshark.org/CaptureSetup/Ethernet

Does Wireshark support such raw traffic?
If you mean with this question: Is it able to capture simultaneously on more than one interface with Wireshark. Then the answer is yes. I think since Version 1.8 it is possible.

answered 15 Oct '15, 09:56

Christian_R's gravatar image

Christian_R
1.8k2625
accept rate: 16%