Packet list view hex and ascii details view
User Guide-PACKETYZER
Packetyzer User Guide
Copyrights, trademarks and acknowledgments.
Windows, Windows NT, Windows 2000, Windows XP are copyright of Microsoft Corporation.
OPENXTRA Limited
User Guide-PACKETYZER
Tracking TCP Traffic................................................................. 36 Searching for Packets...............................................................39 Filtering Packets...............................................42 Making an Expression Filter......................................................47 Advanced Filters...................................................................... 48 Advanced Filter Example.......................................................... 48 Filtering the Packet Display.......................................................49 Coloring Packets......................................................................50 Create Filter from Packet..........................................................51 Printing Packet Details.....................................52 Editing and Sending Packets........................... 54 Packet Editor........................................................................... 54 Editing Packets........................................................................ 55 Sending Packets...................................................................... 56 Decoding Packets.............................................58
OPENXTRA Limited
Although Packetyzer is easy to set up and use the interpretation
of
decoded network traffic requires technical knowledge and experience. It
is assumed throughout that you are familiar with the operation of
Ethernet, packet formats and have some knowledge of network
protocols.
This guide is designed to help you with typical tasks that you want to perform with the software. How do I capture packets? How do I decode packets? How do I print out packet contents? And so on. This task based approach should help you find our way round the software quickly and easily.
Tips and important points to note are shown in boxes like this:
| Note: This is how a tip or point worth noting will appear. |
|---|
Step by step instructions are numbered and shown in bold type.
Ethereal is well established, tried and tested, and has many thousands of users world wide. It is a very powerful and richly featured analyzer, but for Windows users the interface has been unfamiliar in places.
Packetyzer has the same range of decodes as Ethereal, currently over 400, covering all the common protocols and many of the more obscure ones. It is unlikely that you will come across a protocol that cannot be decoded.
File Formats Supported
Since Packetyzer uses the same technology as Ethereal it can read files
• NAI's Sniffer™ (compressed and uncompressed)
• Sniffer™ Pro
• Microsoft Network Monitor
• Novell's Lanalyzer
• the pppd log (pppdump-format),
• WildPacket's EtherPeek/TokenPeek/AiroPeek
OPENXTRA Limited 3
User Guide-PACKETYZER
As a general rule we recommend a machine running:
• Windows 2000
If you don't have a machine of the recommended specification try it anyhow and see if the performance is acceptable. You can use the capture options to reduce the amount of each packet captured, or you can set filters to reduce the number of packets captured.
4 OPENXTRA Limited
The Tree Details View is normally shown on the left with the Packet List View shown at the top right and the Hex and ASCII Details View shown at the bottom right.
| Note: You may change the screen appearance using the Screen Layout buttons on the Capture Tool Bar. | |
|---|---|
| OPENXTRA Limited | 5 |
User Guide-PACKETYZER
Press to begin a capture. Press a second time to end a capture.
Opens a previously captured file. See Global Options, Default Capture, for how to set a name for the capture file.
Allows you to save the current capture. See Global Options, Default Capture, for how to set a name and other parameters for the capture file.
Allows you to search for packets matching specified criteria. See Searching for Packets.
OPENXTRA Limited 7
User Guide-PACKETYZER
A box shows additional Information about the adapter, the Interface Name, the Network Type, the MAC Address, DHCP, and IP Address. See Global Options, Default Capture.
Modify Global Options
Displays a list of Capture and Display Filters. See Filtering Packets.
Show names
Show list of registered plugins
Show the on-line help
Start/Stop the current capture
| Note: If multiple capture windows are open pressing this button will switch the currently selected window capture on or off. Use the Start/ Stop buttons in the individual windows to control other captures. |
|---|
Allows you to specify a range of capture options.
10 OPENXTRA Limited
Limit each packet to
Allows you to limit the amount of data captured in each packet. Limiting
the length of each packet makes the capture file smaller (or collects
more packets in a fixed size buffer) and speeds collection on a busy
network.
User Guide-PACKETYZER
| Note: On busy networks this may slow capture down. If you find that packets are missed switch this option off. The Packets Received and Packets Filtered counters will continue to increase as packets arrive. |
|---|
See also Global Options, Default Capture.
Clear all packets from this session
These allow you to customize the appearance of the Main Screen. The first button shows the standard three views.
| Note that views can be resized by positioning the cursor on the edge and dragging to the required size. |
|---|
Packets Filtered
Displays the number of packets that have been filtered. During capture
this will be the number of packets captured, in a trace file it will be
the number of packets that passed the Filters set.
Memory usage
Displays the percentage of memory used. The amount of memory is set
using the Global Options, Default Capture, Limit total capture to,
option.
Open
Opens a list of previously captured files. Click on a file name to open
it.
Close
Closes the current session.
14 OPENXTRA Limited
