Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

Protocol Analyzer

Hello everyone,

I need as much feedback as possible, so please feel free to comment.

I am in the process of currently selecting a protocol analyzer/protocol decoder (aka sniffer), whether it is commercial or open source.

I am very curious to here everyone?s insight on what product they choose and why?

What criteria did you use to make your final decision?

Cost and operating system is not one of my requirements. The sniffer can run on any platform whether it is Windows or Linux.

I look forward to hearing back from everyone.

Thanks in advance,

Take care,

Chris.

PS: Yes I am currently looking at the cat6k NAM blade as well.

2 REPLIES
Gold

Re: Protocol Analyzer

What about old good Ehtereal

http://www.ethereal.com/

Its for both linux and win platforms

What is purpose of sniffer??? If you sometimes need to sniff traffic for troubleshooting purposes I think ethereal is good choice

If you need permanent traffic analyzer (with mirrored ports on switch) i recommend sort

http://www.snort.org or netop http://www.ntop.org/overview.html (its best for network usage monitoring)

M.

New Member

Re: Protocol Analyzer

What interface do you monitor? If it is Ethernet only, Ethereal is a good choice. If it is ATM, Serial etc, I would recommend to consider Niksun NetVCR (www.niksun.com). It is a commercail appliance building on FreeBSD kernel. It captures raw packets and stores into database for post-event analysis w/ stream reassembly regardless of the L2 protocol.

103
Views
0
Helpful
2
Replies