Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Sniffer Opinions?

From: black () galaxy silvren com
Date: Fri, 29 Mar 2002 11:16:42 -0500 (EST)
I've used Etherpeek, and like it. I've done html exports of captures a few
times, and that can come in really handy for giving to vendors. The other
product I've worked with that most closely matches it would probably be
Sniffer Pro. In Etherpeek you can also select only related packets in a
session, so for example if your web server had 10 tcp sessions it was
serving at the time, you could select which session you wanted to look at.
Infinitely handy in separating signal to noise on busy networks.

PROS: It's a tight package that works great. No crashing problems. You can
create very detailed filters. It's dirt cheap compared to Sniffer Pro. It
also comes with some tools such as a ping scanner, service scanner etc,
but they are very basic.

CONS: Not as complete as Sniffer Pro. Also not as popular as Sniffer Pro,
so sending raw capture data is not always an option. No real-time
analysis like Sniffer Pro will give you.

On Tue, 19 Mar 2002, Ames, Neil wrote:


Sniffer gurus,
      I am about to buy a protocol analyzer.  I was very impressed with a
brief eval of eEye's "Iris" scanner.  Anyone have in-depth experience with
it with a strong opinion?  I barely got a chance to evaluate it and am still
amazed by how much easier it is to use than some other products.  It seems
infinitely more intuituve and polished than Sniffer Pro 4.5 and Ethereal.
Anyone worked on the WildPackets Etherpeek or NX scanner?  I am downloading
an eval now, but a brief eval isn't like months of relying on in in spot
situations.  I want a product that will let me identify many protocols,
group conversations easily, and provide decent reporting, on Ethernet.  I
don't know that I can't live without live decoding, but it seems very useful
(and cool).  I *don't* want a product that requires me to read the manual if
I haven't used it in a month.


Thank you,

Fritz

Neil F. "Fritz" Ames
Sr. Computer Systems Analyst
Anteon Corporation
3211 Jermantown Rd.
JLWI / Room 541
Fairfax, VA 22030
Tel (703) 246-0634
names () anteon com

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards



_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: