Typically, when capturing on an 802.11 network, only data packets are captured management and control packets aren't seen. Unfortunately, changing the 802.11 capture modes is very platform/network adapter/driver/libpcap dependent and might not be possible at all (Windows is very limited here).ĥ.Cards with the Texas Instruments ACX100/ACX111 chipsetĦ.Cards with Atheros Communications chipsetsħ.Cards with Ralink Technologies chipsetsĨ02.11 traffic includes data packets, which are the packets used for normal network protocols it also includes management packets and low-level control packets. The following will provide some 802.11 network details and describes how to disable those translation/filtering and see what's "really" going on inside your WLAN. That's one of the reasons why the 802.11 network adapters have two additional mechanisms to ignore unwanted packets at the receiving side: channels and SSID's.Ĭonclusion: the packets you'll be capturing with default settings might be modified and only a limited amount of the packets transmitted through the WLAN. Compared to Ethernet, the 802.11 network is even much "broader", as the transmitted packets are not limited by the cable medium. In this case you won't see any 802.11 management or control packets at all and the 802.11 packet headers are "translated" by the network driver to "fake" Ethernet packet headers.Ī 802.11 LAN uses a "broadcast medium", much like (the mostly obsolete shared) Ethernet. Without any interaction, capturing on WLAN's may only capture user data packets with "fake" Ethernet headers. The following will explain capturing on 802.11 wireless networks (WLAN).
0 kommentar(er)
