11-12-2007 02:20 AM - edited 03-05-2019 07:22 PM
Hi all,
I got a lab with several routers connected via Ethernet and some serial connections. In order to get more familiar with EIGRP, I'd like to use Wireshark to capture the corresponding packets.
So far I can only capture HELLO packets, since there is no EIGRP process on that Win XP PC. *sugh* What's a good way to start from here ?
a) Is there a Win XP EIGRP client so that the PC shows more than just hello ? I'd be surprised ;)
b) I could connect two routers thru a hub and then attach the sniffing PC to that hub. Alternatively, I could use a switch and the define a monitoring port - but I'd need to search for the howto ^^.
Any other ideas ?
What about multiple instances of dynamips ? Can wireshark sniff selectively on single virtual connections ?
Later,
Oliver
11-12-2007 02:45 AM
11-12-2007 07:56 AM
Well if this is in a lab where you cannot break anything then your best bet to see stuff happening is to use your debug commands and you can see almost everything going with the eigrp process . You have to be very careful with debug commands in a live network as this can bury a cpu if used incorrectly but in a lab situation with little traffic it would be a good way to really see what is going on . There is a lot of info that will come across the screen but it is no worse that going thru screens of sniffer captures.
11-13-2007 02:03 AM
Hi Glen,
thanks for your advice, debug would be a backup method to use, since the output is not as readable (and manoeverable) as wireshark sniffings. OK, you can get used to it, but in direct comparison I noticed my students are faster getting the concepts when using a GUI based analyzer.
Best wishes,
Oliver
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide