Configure Wireshark on 3850 to capture bi-directional Wireless Client Traffic
I'm trying to configure Wireshark to capture bi-directional client traffic of a single wireless client only. The IP address is 10.10.10.14 on VLAN 1. Since I can't apply filters to the CAPWAP interface, I chose VLAN 1, with the following base commands.
monitor capture MCAP interface VLAN1 both
monitor capture MCAP file location usbflash:mcap.pcap buffer-size 1
monitor capture MCAP limit duration 120
If I configure "monitor capture MCAP match ipv4 any any" I get too much information. If I use "monitor capture MCAP match ipv4 host 10.10.10.14 any" I get packets transmitted by 10.10.10.14, but not the responses.
Is there a way to accomplish this, or do I need to use Wireshark to filter unwanted packets? If this were a busy AP, this could result in a very large capture file. Thanks for the help.
I'm trying to configure Wireshark to capture bi-directional client traffic of a single wireless client only. The IP address is 10.10.10.14 on VLAN 1. Since I can't apply filters to the CAPWAP interface, I chose VLAN 1, with the following base commands.
monitor capture MCAP interface VLAN1 both
monitor capture MCAP file location usbflash:mcap.pcap buffer-size 1
monitor capture MCAP limit duration 120
If I configure "monitor capture MCAP match ipv4 any any" I get too much information. If I use "monitor capture MCAP match ipv4 host 10.10.10.14 any" I get packets transmitted by 10.10.10.14, but not the responses.
Is there a way to accomplish this, or do I need to use Wireshark to filter unwanted packets? If this were a busy AP, this could result in a very large capture file. Thanks for the help.
Similar Messages
-
Wireless 3850 and Web-Auth for Wireless clients
Hi
I can't get the web-auth feature to work properly on the Catalyst 3850 for wireless clients.
Internet is all tested and there is full IP connectivity.
Issue is when I enable the webauth feature on the SSID. Incidentally when I enable the SSID to use consent it works.
I am using local authentication for the guest users.
When user logs onto the wireless, they get to the landing page, and are able to enter the credentials then there is a 30 second pause. The client detail says WEBAUTH_PEND and then a pop up window comes back as seen below
Config below
interface Vlan302
description **** Wireless Guest ****
ip address 10.145.224.161 255.255.255.224
ip helper-address 10.144.214.134
ip helper-address 172.17.2.56
ip http server
ip http secure server
ip dhcp snooping
wlan XXXXX 2 XXXXXX
aaa-override
accounting-list default
client vlan 302
ip flow monitor wireless-avc-basic input
ip flow monitor wireless-avc-basic output
no security wpa
no security wpa akm dot1x
no security wpa wpa2
no security wpa wpa2 ciphers aes
security dot1x authentication-list WEB_AUTH
security ft
security web-auth
security web-auth authentication-list WEB_AUTH
security web-auth parameter-map vit_web
no shutdown
parameter-map type webauth vit_web
type webauth
security web-auth parameter-map vit_web
user-name Guest1
creation-time 1390837878
privilege 15
password 7 022D0156060F1B351D
type network-user description Temp-Guest-User guest-user lifetime year 0 month 1 day 0 hour 0 minute 0 second 0
user-name Guest2
creation-time 1390838016
privilege 15
password 7 0724244143000D1145
type network-user description Temp-Guest-User guest-user lifetime year 0 month 1 day 0 hour 0 minute 0 second 0
aaa new-model
aaa authentication login WEB_AUTH local
aaa authorization network WEB_AUTH localHey Greg,
Did you also define the global webauth parameter? I think I had to do this to get my 5760 "working" or as working as these new controllers can be.
parameter-map type webauth global
type webauth
virtual-ip ipv4 x.x.x.x wlc.whatever.org
max-http-conns 50
Also I had to enable http server in addition to secure server
ip http server
ip http secure-server
Are you using a self signed cert?
I saw windows clients take a long time to load the page when using a self signed cert.
MAC clients dont seem to work if you use the IOS or OSX based logon. You'll need to disable the auto logon and launch a browser for the redirect. There was a bug ID around this MAC problem which was supposedly resolved in 3.3.1SE but I still have the problem.
-Kyle -
How can I capture video directly into FCP without recording to tape first?
I hooked my Sony VX2000 to the computer via firewire and opened the Log and Capture dialog box. The video from my camera shows correctly in the preview window.
I click the Capture Now button and the capture window opens but no video displayed. The message below the window says "Waiting for Timecode".
I guess the camera doesn't send timecode when it's not recording so I press the record button. Now video shows up in the capture window. After 16 frames it freezes and an error box pops up that says "Capture Now has reached the end of the tape. All existing footage between the point where you started the capture and the end of the tape was captured successfully."
Foiled again! This has been a problem from time to time when I want to capture video from a source that does not supply timecode.
Is there any settings I can change to capture video directly from a camera using FCP without having to record it to tape in one step and then capture it in a second step?
Thanks,
Rob:-]
FCP 5.1.2 Mac OS X (10.4.8) Dual 1.8GHz Power PC G5, 3GB ramI thought I had tried that. Thanks, that was the answer.
I am aware of the danger of not having tape backup. Having worked with the new Panasonic AG-HVX200 it is a chore to free up the P2 cards fast enough to keep from starving the camera crew. Copying the P2 contents to a single hard drive is the practice but leaves the whole shoot at the mercy of a single point of failure.
As far as my capturing directly to HD, it isn't a problem for short podcasts that could be recreated quickly if lost. Also, I can still record to tape in the camera but avoid the second step of capture when I'm in my edit bay anyway.
Peace,
Rob:-] -
Capturing Video Direct to hard drive with FCS
I am using a Canon HX A1 and I am wondering if there is any way of capturing video directly to a hard drive while shooting without using Adobe On Location. Does FC have any functionality in this area or is there any other MAC friendly apps that do this?
You can capture a live feed with FCE, FCP, QT Pro and several other applications. Connect your camera via Firewire, in FCP, set Device Control to ":Non-Controllable Device" and use Capture Now.
NOTE: whenever using a Canon device for capturing of any type, it would be best to make sure that the Canon device is on it's own Firewire bus. You can achieve this by adding a Firewire card (thereby creating a new FW bus) or by capturing only to an internal hard drive.
-DH -
OIM 11g-configure SoD so that it works for direct provisioning of the roles
Dear All,
page 23-3 of Developer's Guide (OIM 11g) provides information regarding configuration of the SoD for Direct provisioning of the resources. How to configure SoD so that it works for direct provisioning of the roles?
Thank you for your time
MariaRajiv,
I did not find the documentation regarding this. But I hoped I will.
In my project we assign roles directlly, not resources.
I suspect the integration with Role Manager is required in this case. SoD module in OIA should be used then.
Maria -
Can you capture images directly from a fuji camera - Fine Pix S2pro
can you capture images directly from a fuji camera -- Fine Pix S2pro or Fine Pix S2pro to a imac running 10.6.5
camera tethered to the imacPage 76. Thanks!!!
You can quickly open Camera when the screen is locked by double-clicking the Home button, then tapping . -
How do I capture video directly to my MacBook?
I use Sony PD-150 and MacBook Pro with FCP5
I tried to capture video directly to my MacBook Hard Drive
without using a tape but it keeps waiting for timecode
to be set and going nowhere.
I am pretty sure that there is way to record
directly to hard drive without going through
recording to tape and from tape to hard drive
but can't find the solution.
Can you guys help me out on this issue?
thanks in advance!I am pretty sure that there is way to record
directly to hard drive without going through
recording to tape and from tape to hard drive
but can't find the solution.<
Ian's answer is spot on.
We see this post about once a week so you can scroll down or search the forum and find all of the reasons recording directly to your drive is not recommended.
bogiesan -
Can ZAM capture local Administrators from client?
Hi, my first time posting here. My organization uses Zenworks 11 SP1 (ZCM and ZAM). Can ZAM be configured to capture members of the local administrators group off of the client? Our client machines are Windows XP SP3, and local administrators can be found at My Computer-Manage-Local Users and Groups-Groups-Administrators on the client.
Our client services guys know ZAM much better than I do and they have never been able to find how to do this. I'm writing a custom app that needs requires this data. We have a workaround process in place, but it's a little clunky and it would really be ideal if we had a way to just capture this directly into ZAM since the large majority of the other data I need is already coming from ZAM. Was just wondering if any Zenworks gurus out there could shed a little light. Thank you in advance for any replies.Chris,
It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.
Has your problem been resolved? If not, you might try one of the following options:
- Visit http://support.novell.com and search the knowledgebase and/or check all
the other self support options and support programs available.
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://forums.novell.com)
Be sure to read the forum FAQ about what to expect in the way of responses:
http://forums.novell.com/faq.php
If this is a reply to a duplicate posting, please ignore and accept our apologies
and rest assured we will issue a stern reprimand to our posting bot.
Good luck!
Your Novell Product Support Forums Team
http://forums.novell.com/ -
My school has a web filter that prevents me from accessing any website I want to at school, and I want to get past it.
I know, from experience, that I can use a program called Ultrasurf to get around this, though it requires me to use IE, and is inconvenient.
I want to know if it's possible to configure the proxy settings on Firefox (and some on my modem/router, and/or computer at home), in order to direct all my traffic through my router at home, similarly to how one would use a proxy.
If so, how is this possible?
(I'm relatively experienced with computers, but have very little programming, and other complex knowledge of the workings of these things)
At home, my computer is running 64 bit Windows 7, has 4 GB of RAM, a 2.1GHz Intel Core 2 Duo processor, and can be turned on and online 24/7, such that if necessary, it can direct traffic sent to it.
My router/modem at home is (I believe) a Westell 327W, I can get more information by looking at it later if necessary.
At school, as of last year (and probably the same this year), the computers run Windows XP, and I am able to run programs installed on a flash drive on them, though cannot actually install programs on the computers themselves.
I'll be using whatever the latest (not beta) version of Firefox Portable exists when I return to school in a week.My school has a web filter that prevents me from accessing any website I want to at school, and I want to get past it.
I know, from experience, that I can use a program called Ultrasurf to get around this, though it requires me to use IE, and is inconvenient.
I want to know if it's possible to configure the proxy settings on Firefox (and some on my modem/router, and/or computer at home), in order to direct all my traffic through my router at home, similarly to how one would use a proxy.
If so, how is this possible?
(I'm relatively experienced with computers, but have very little programming, and other complex knowledge of the workings of these things)
At home, my computer is running 64 bit Windows 7, has 4 GB of RAM, a 2.1GHz Intel Core 2 Duo processor, and can be turned on and online 24/7, such that if necessary, it can direct traffic sent to it.
My router/modem at home is (I believe) a Westell 327W, I can get more information by looking at it later if necessary.
At school, as of last year (and probably the same this year), the computers run Windows XP, and I am able to run programs installed on a flash drive on them, though cannot actually install programs on the computers themselves.
I'll be using whatever the latest (not beta) version of Firefox Portable exists when I return to school in a week. -
Cisco 3850 Mobility Agent unable to connect clients
Hi
We are trying to use Cisco 3850 as Mobility agents with 5760. We can't seem to get the clients to authenticate to the radius server. We don't even see them appear in the radius logs.
We have defined the radius server and the profile
wlan Wireless 2 WAP
aaa-override
accounting-list Radius
client vlan wireless
security dot1x authentication-list Radius
session-timeout 1800
no shutdown
radius server Primary
address ipv4 x.x.x.x auth-port 1812 acct-port 1813
timeout 5
retransmit 2
key 7 ........
radius server Primary
address ipv4 x.x.x.x port 1812 acct-port 1813
timeout 5
retransmit 2
key 7 .........
The client appears to connect to the AP but can't authenticate so gets kicked off
If we do a test aaa group username password then it says that it's sucessful.
In the debug we get 802.1X required but then it never seems to get any further.Alright, so I finally figured out the issue with this. I had a Mobility Anchor set on the guest WLAN and once I removed that all started working again.
What is Mobility Anchor?
A. Mobility Anchor, also referred to as Guest tunneling or Auto Anchor Mobility, is a feature where all the client traffic that belongs to a WLAN (Specially Guest WLAN) is tunneled to a predefined WLC or set of controllers that are configured as Anchor for that specific WLAN. This feature helps to restrict clients to a specific subnet and have more control over the user traffic. Refer to the Configuring Auto-Anchor Mobility section of Cisco Wireless LAN Controller Configuration Guide, Release 7.0 for more information on this feature. -
Routing back to Direct Access Clients - is this possible?
Hi,
We have been using direct access for the past few months successfully, however the one problem we are still having is we can't use programs that require a route back to the Direct Access client (such as managing a Hyper-V machine on the local lan), using SourceOffsite
or even using Remote Desktop to remote onto a direct access client or ping the direct access client.
Our local LAN uses Ipv4 and we can route fine to the Direct Access clients from the Direct Access Server where the tunnel terminates but not from any other machine on the network. Do I need to change the direct access configuration to allow this or do I need
to somehow create a route on my LAN for the direct access clients?
Thanks in advance
DavidI found out how to do this in this useful article and tested it and it is working fine - thanks.
http://www.packtpub.com/article/configuring-manage-out-to-directaccess-clients -
Ok So I have windows 8.1 with Direct Access Client and it works fine when I am able to check and uncheck proxy settings - which is a bit of a pain and seems unnecessary (I hope). If I take the laptop to a Starbucks I get the error that the proxy server is
not responding so it never redirects for me to "accept" the rules.
If I uncheck my proxy settings it then redirects and connects to their internet wifi and off I go - DA connects and all is well.
I am using a GPO to configure the proxy settings as shown (all options are greyed out for the users)Hi,
Your problem is a classic one when using that kind of proxy settings, unfortunately.
To solve this without the need of user interaction, there are two solutions that will sort this out for you. In your case, if you want to use your corporate connection for internet traffic even over da, I'd opt for alternative 1 or 2 depending on what you are
trying to achieve.
1. WPAD (Web Proxy Auto Discovery protocol http://en.wikipedia.org/wiki/Web_Proxy_Autodiscovery_Protocol) - it actually uses the Automatic browser configuration checkbox on your client and looks for the file wpad.dat on a specific web server that you Pointout
with either dns-record called wpad or DHCP option 252.
2. Auto configuration script (pac script http://en.wikipedia.org/wiki/Proxy_auto-config) - uses the same kind of file as above. The difference is that you get the possiblity, like you want in your scenario to target what users that should get the script.
See this below article for more details on the options you have.
http://technet.microsoft.com/en-us/library/dd361918.aspx
http://techlib.barracuda.com/display/WSFLEXv41/How+to+Configure+Proxy+Settings+Using+Group+Policy+Management
Let us know if you need further assistance!
/Johan
MCT | MCSE: Private Cloud/Server, Desktop Infrastructure -
Cisco WAP4410N - not configurable as Wireless Client with WRT610N?
Hi!
On several workstations I use multiple network to
1 - access Internet and share Printers
2 - communicate within the local area
The second WLAN I need for several NDAS devices.
Due to their own LPX-Protocol these NDAS devices don't work properly with MAC address cloning. In combination with several access points or clients from other manufacturers Wireless N transmission does not work.
So in WLAN 2 I use the Cisco Linksys WRT 610N Router with 2.4 Ghz WLAN.
I intended to use the Cisco WAP4410N in Client Mode to connect a workstation with this router and set up NDAS connection.
Other workstations will directly connect to the router via Cisco Linksys WUSB-600N.
The connection from WUSB-600N to WRT610N works perfectly.
My problem is:
The WAP4410N does not connect to a wireless Network in Client Mode.
(It is not a problem of Channel configuration, Security or Signal strength - because if I connect my workstation via WUSB-600 this works instantly.)
If setup as an access Point it will start up sending competing to my router.
In Network Status it shows no received packages.
In Wireless Client/Repeater Mode there is no connection either.
My question is:
Is the WAP4410N not designed to be used as a Wireless Client?
An if it was - how is it to be set up as one?
Thanks
ando_userHi!
On several workstations I use multiple network to
1 - access Internet and share Printers
2 - communicate within the local area
The second WLAN I need for several NDAS devices.
Due to their own LPX-Protocol these NDAS devices don't work properly with MAC address cloning. In combination with several access points or clients from other manufacturers Wireless N transmission does not work.
So in WLAN 2 I use the Cisco Linksys WRT 610N Router with 2.4 Ghz WLAN.
I intended to use the Cisco WAP4410N in Client Mode to connect a workstation with this router and set up NDAS connection.
Other workstations will directly connect to the router via Cisco Linksys WUSB-600N.
The connection from WUSB-600N to WRT610N works perfectly.
My problem is:
The WAP4410N does not connect to a wireless Network in Client Mode.
(It is not a problem of Channel configuration, Security or Signal strength - because if I connect my workstation via WUSB-600 this works instantly.)
If setup as an access Point it will start up sending competing to my router.
In Network Status it shows no received packages.
In Wireless Client/Repeater Mode there is no connection either.
My question is:
Is the WAP4410N not designed to be used as a Wireless Client?
An if it was - how is it to be set up as one?
Thanks
ando_user -
Windows Server 2012 - Direct Access clients and the Windows 8 firewall
Hi,
We're running a simple proof-of-concept for Server 2012 Direct Access, we have a single DA server behind a firewall using NAT. We have a number of client devices setup for DA and running Windows 8.
Our issue is that we can only get the Windows 8 direct access clients to connect (when outside the corporate network) and work with the windows firewall disabled (public network profile).
With the windows firewall disabled everything works exactly as expected. When outside the corporate network the client detects the network state (public network profile), connects via DA and all internal resources can be accessed successfully...fantastic.
Is there some specific guidance on manually configuring the windows 8 firewall for Direct Access ? We've tried the obvious TCP:443 with edge traversal enabled but without success.
Much of the information we have found relates to UAG rather than Windows 2012 DA.
Any assistance is appreciated.Hi,
There isn’t any specific configuration on the firewall.
Just confirm that port 443 can be forwarded to DirectAccess server.
Of course, make sure you are using IPsec first.
Check the links:
STEP 6: Test DirectAccess Client Connectivity from Behind a NAT Device
http://technet.microsoft.com/en-us/library/hh831524.aspx#TeredoCLIENT1
DirectAccess for Windows Server 2012 Installation & Configuration Guide
http://syscomlab.blog.com/2012/09/directaccess-for-windows-server-2012-guide/
Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
Report Print Directly to Client Printer in Linux
Hi,
I m doing migration of Forms and Reports from 6i to 10g.
In this 6i form contain the Direct Report Print to Client Printer.
But in 10g, How to achive this,
I don't want to show the report in screen, i want directly report goes to Client Default Printer for Printing Purpose.
Can any one tel me if you have any solution.
Thanks
GanyThanks For you reply,
I already tried this, But I don't Know ,how to create Java Bean.
So Any Other Method is there.
If Any one know any other Solution for Print Directly to Client Printer.
Thanks,
Gany
Maybe you are looking for
-
I backed up the phone and updated to ios 7.0.4 which took about 2 hours. Now the phone powers on and says hello in different lagnuages and says to slide to setup. I am asked to choose a network and then if I want to setup as a new iphone, restore f
-
Can't fast forward songs? Help please
HELP! 10.1.2.17 is the iTunes version I have. I did not do the new update yet. I have a question. When you play a song. On the top middle it usually shows how many seconds, minutes you are into the song. You can drag the little bar and say go from 0.
-
Component tree destroyed when it should not be
I have a custom component which derives from UICommand, clicking on which pops up a new window ... i have a listener associated with this component ... within this listener I call the setAction(outcome) method on the associated UICommand component wi
-
MS SQL Server 2000 Problem to Connect
Hi There I have a problem with MS SQL Server 2000 with Service Pack 3 and JDBC from Microsoft My tools are: - Windows 2003 Server Standart Edition - MS SQLServer 2000 with ServicePack 3 - JDBC from Microsoft with ServicePack 3 I want to connect in th
-
Enterprise manager is not working RAC environemnt
Hi, Its long time to be back. My Details Database Oracle with 2 node RAC Version:10.2.0.3 OS: Windows 2003 In Both nodes Database is up and running, but only problem with EM. While connecting from Firefox , it is saying that Firefox is unable to esta