Great Circle Associates Firewalls
(April 1998)
 

Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]

Subject: Re: AW: Sniffer
From: "Ryan Russell" <ryanr @ sybase . com>
Date: Tue, 14 Apr 1998 14:42:32 -0700
To: Tony Iannotti <tony @ secapl . com>
Cc: "Berchtold Patrick (GIAPBE)" <giapbe @ gia . ch>, "'Taufik Islam'" <Tislam @ acaonline . org>, "Firewalls Mailing List (E-Mail)" <firewalls @ GreatCircle . COM>

Nope, it's now called SnifferPro.  Actually, what we got most recently was
both products in one box, the renamed NetXray (SnifferPro) and the
Sniffer Anaylzer (traditional Sniffer from NGC, now up to version 5.5)

The Sniffer Analyzer still needs one of the approved cards, and
is still a DOS mode program, but it has great decodes.  The SnifferPro
stuff runs great under Windows 95 or NT, and is visually more appealing.
Doesn't decode quite as well, and has no expert module.   Uses whatever
NIC you've got installed.  You can export the SnifferPro captures
to load into the Sniffer Anaylzer.

When they finally get the two full merged, it ought to be really nice.

                              Ryan





Tony Iannotti <tony @
 secapl .
 com> on 04/14/98 08:42:40 AM

To:   "Berchtold Patrick (GIAPBE)" <giapbe @
 gia .
 ch>
cc:   "'Taufik Islam'" <Tislam @
 acaonline .
 org>, "Firewalls Mailing List
      (E-Mail)" <firewalls @
 GreatCircle .
 COM> (bcc: Ryan Russell/SYBASE)
Subject:  Re: AW: Sniffer



On Tue, 31 Mar 1998, Berchtold Patrick (GIAPBE) wrote:

> The most powerful monitor I know is Sniffer (former NetXRay) from
> Network Associates. It is easily scalable for your specific needs. See
> http://www.nai.com/ for more.

As I understand it, the NetXRay product is still called NetXRay, the
Sniffer product is a different (more powerful, but needs their proprietary
laptop, actually a re-worked Toshiba, I think)  product.

> Another monitor I once heard about is NetAnt from People Network. See
> http://www.people-network.com/netant.htm for info.
>
> But if you have a Linux box at hand I would rather use tcpdump than
> those above. It's powerful, easy to use and free.
>
> Patrick
>
>
>
> > -----Ursprüngliche Nachricht-----
> > Von:  Taufik Islam [SMTP:Tislam @
 acaonline .
 org]
> > Gesendet am:    Freitag, 27. März 1998 23:21
> > An:   Firewalls @
 GreatCircle .
 COM
> > Betreff:   Sniffer
> >
> > Is there a good Packet sniffer that runs on for NT 4.0 ?
> > Please help me with any information you may have
> > Thanks
> >
> > If you know of any good packet sniffer for UNIX please let me know
> > also.
> >
> > Taufik Islam
> > Network Engineer, ACA
>
>



Received: from tunnel.sybase.com ([130.214.231.88]) by ibwest.sybase.com
(Lotus SMTP MTA v4.6.1  (569.2 2-6-1998)) with SMTP id 882565E6.0076F66B;
Tue, 14 Apr 1998 14:39:23 -0700
Received: from smtp2.sybase.com (smtp2 [130.214.88.21])
          by tunnel.sybase.com (8.8.4/8.8.4) with ESMTP
       id OAA02793 for <Ryan_Russell @
 tunnel .
 sybase .
 com>; Tue, 14 Apr 1998
14:37:28 -0700 (PDT)
Received: from inergen.sybase.com (inergen.sybase.com [192.138.151.43])
          by smtp2.sybase.com (8.8.4/8.8.4) with ESMTP
       id OAA02505 for <ryan .
 russell @
 sybgate2 .
 sybase .
 com>; Tue, 14 Apr 1998
14:36:32 -0700 (PDT)
Received: from relay4.UU.NET (relay4.UU.NET [192.48.96.14])
          by inergen.sybase.com (8.8.4/8.8.4) with ESMTP
       id OAA04629 for <Ryan .
 Russell @
 sybase .
 com>; Tue, 14 Apr 1998 14:34:57
-0700 (PDT)
Received: from honor.greatcircle.com by relay4.UU.NET with ESMTP
     (peer crosschecked as: honor.greatcircle.com [198.102.244.44])
     id QQelcv17176; Tue, 14 Apr 1998 17:27:38 -0400 (EDT)
Received: (majordom @
 localhost) by honor.greatcircle.com
(8.8.5/Honor-Lists-970926-1) id IAA04957; Tue, 14 Apr 1998 08:43:15 -0700
(PDT)
Received: from Farstar.secapl.com (qs-alt.secapl.com [192.131.69.9]) by
honor.greatcircle.com (8.8.5/Honor-980202-1) with ESMTP id IAA04944 for
<firewalls @
 GreatCircle .
 COM>; Tue, 14 Apr 1998 08:43:01 -0700 (PDT)
Received: from Cookie.secapl.com (cookie.secapl.com [192.108.247.19])
     by Farstar.secapl.com (8.8.7/8.8.7) with SMTP id KAA75886;
     Tue, 14 Apr 1998 10:42:58 -0500
Received: from Fozzie.secapl.com by Cookie.secapl.com (AIX 3.2/UCB
5.64/4.03)
          id AA98579; Tue, 14 Apr 1998 10:42:48 -0500
Received: from localhost (tony @
 localhost)
     by fozzie.secapl.com (8.8.6/8.8.6) with ESMTP id LAA11932;
     Tue, 14 Apr 1998 11:42:42 -0400
X-Authentication-Warning: fozzie.secapl.com: tony owned process doing -bs
Date: Tue, 14 Apr 1998 11:42:40 -0400 (EDT)
From: Tony Iannotti <tony @
 secapl .
 com>
To: "Berchtold Patrick (GIAPBE)" <giapbe @
 gia .
 ch>
Cc: "'Taufik Islam'" <Tislam @
 acaonline .
 org>,
        "Firewalls Mailing List (E-Mail)" <firewalls @
 GreatCircle .
 COM>
Subject: Re: AW: Sniffer
In-Reply-To: <FDDB03A0E12DD111896308002BB9FF6C2F7D13 @
 giat004 .
 gia .
 ch>
Message-Id: <Pine .
 A41 .
 3 .
 96 .
 980414114046 .
 19970M-100000 @
 fozzie .
 secapl .
 com>
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=ISO-8859-1
Sender: firewalls-owner @
 GreatCircle .
 COM
Precedence: bulk
Content-Transfer-Encoding: quoted-printable
X-MIME-Autoconverted: from 8bit to quoted-printable by tunnel.sybase.com id
OAA02793




Follow-Ups:
Indexed By Date Previous: TFTP with Raptor
From: Rick_McMaster @ freddiemac . com (McMaster, Rick)
Next: Re: [FW1] SNMP agent
From: "Santi Ribas - Brown's Operating System Services" <santi @ browns . co . uk>
Indexed By Thread Previous: Re: AW: Sniffer
From: "Ryan Russell" <ryanr @ sybase . com>
Next: Re: AW: Sniffer
From: Tony Iannotti <tony @ secapl . com>

Google
 
Search Internet Search www.greatcircle.com