RE: Distributed sniffer products

[Owen DeLong <owen () delong com>]

OK... I'll leave the XP thing al0wned.

As to the linux solution, why would you bother with VNC rather than just
ssh.  Pull the libpcap file back to a local desktop for analysis in 
ethereal.

Owen


--On Wednesday, September 3, 2003 11:26 AM -0700 Luke Starrett 
<lstarrett () nc rr com> wrote:

> I took a different approach and run a Windows XP machine with multiple
> network cards to the segments that I regularly need to sniff.  I use the
> remote desktop feature to access the box.  It has one NIC for regular
> connectivity, and a couple others that are just used for sniffing.
> Others are using cheap linux boxes running ethereal in a similar fashion
> using VNC to access the box.
>
> Luke
>
> > -----Original Message-----
> > From: owner-nanog () merit edu [mailto:owner-nanog () merit edu] On
> > Behalf Of Austad, Jay
> > Sent: Wednesday, September 03, 2003 11:08 AM
> > To: 'nanog () merit edu'
> > Subject: Distributed sniffer products
> >
> >
> >
> > Anyone have any experience with these?  I'm looking for
> > something similar to Network Associates Sniffer product.
> >
> > Are there any open source projects that are decent?  What are
> > others using?
> >
> > ----------------
> > Jay Austad
> > Senior Network Analyst
> > Travelers Express / MoneyGram
> > e: jaustad () temgweb com p: 952.591.3779