Cace Technologies AirPcap Wireless Capture Adapters manual Wireless Settings Dialog

Page 18

Decryption mode: can be one of the following:

oNone: no decryption is performed, neither at the driver level nor in Wireshark.

oWireshark: the driver doesn’t perform any decryption of the captured packets, and they are decrypted by Wireshark while displaying them. This has the advantage of minimizing the CPU load during the capture process. Moreover, the driver doesn’t manipulate the packets, so the captured data is a precise picture of the network traffic. However, capture filters (also known as BPF filters) on TCP/IP fields or packet payloads will not work. Since this kind of decryption is done by the analyzer, when you turn it on or off, you will see the changes immediately reflected in the Wireshark window.

oDriver: the packets are decrypted by the driver before reaching Wireshark. This option has two advantages: capture filters on TCP/IP fields or packet payloads will work; when logging the network traffic to disk, it will be unencrypted. This will make it easier for third party applications to understand them. Since this kind of decoding is done during the capture, the changes you make will be effective starting with the next capture.

Wireless Settings: this button opens the Wireless Settings dialog for the currently-selected AirPcap adapter. See the next section for details.

Decryption Keys: this button opens the Decryption Keys Management dialog. See the “Decryption Keys Management Dialog” section below for details.

The Wireless Settings Dialog

The Wireless Settings Dialog (Figure 7) can be used to set the advanced parameters of an AirPcap adapter. The dialog can be accessed either from the Wireless Toolbar (Wireless Settings) or from the main menu (CaptureOptionsWireless Settings).

16

AirPcap User’s Guide

Page 17 Page 19
Image 18
Page 17 Page 19
Contents Family of Wireless Capture Adapters User’s Guide Copyrights Contents and Figures Figures AirPcap Product Family AirPcap AirPcap Tx AirPcap Ex AirPcap NBrief Introduction to TerminologyStandards Channels Types of Frames How AirPcap Adapters Operate Http//standards.ieee.org/getieee802/802.11.htmlMultiple Channel Capture applies to USB adapters only Configuring the Adapters the AirPcap Control Panel Identifying the AirPcap AdaptersSettings AirPcap N and Extension ChannelSettingWEP Keys List improves performance Multi-Channel Aggregator AirPcap and Wireshark Identifying the AirPcap Adapters in WiresharkWireless Toolbar Wireless toolbar has the following controls Wireless Settings Dialog Parameters that can be configured are Decryption Keys Management Dialog in Wireshark Decryption Keys Management DialogAirPcap User’s Guide Transmit Raw 802.11 Frames on Your Network Where to Learn More 5GHz Band Appendix a 802.11 Frequencies4GHz Band Channels Supported by the AirPcap Product FamilyAirPcap N

AirPcap Wireless Capture Adapters specifications

Cace Technologies AirPcap Wireless Capture Adapters are essential tools for network professionals aiming to monitor, analyze, and troubleshoot wireless networks. These innovative devices enable packet capture and analysis over 802.11 wireless networks, providing insights that are crucial for maintaining network integrity and performance.

One of the main features of AirPcap adapters is their ability to capture raw 802.11 packets in real time, including management, control, and data frames. This capability allows for a comprehensive view of wireless communications, assisting engineers in identifying issues like signal interference, unauthorized access points, and potential security breaches.

Another significant characteristic is the support for both 802.11a/b/g/n standards. This wide-ranging compatibility ensures that users can effectively analyze traffic across various network types, regardless of the generation of equipment being utilized. Additionally, AirPcap adapters are equipped with advanced features like packet injection, which is beneficial for testing network robustness and security defenses.

The wireless capture adapters are often praised for their seamless integration with popular analysis tools such as Wireshark. This combination provides users with a powerful interface for performing in-depth packet analysis, enabling the decoding of complex protocols and offering visualizations that aid in understanding network behaviors.

For ease of use, AirPcap adapters come equipped with a compact design and user-friendly software. They can be connected to laptops or portable devices, making them ideal for field use. Their portability ensures that field technicians or network analysts can perform assessments in various environments without the need for extensive setup or configurations.

Security is another critical aspect where AirPcap shines. These adapters allow for the capture of encrypted packets, provided the user has the appropriate decryption keys. This feature is particularly valuable for troubleshooting security protocols and ensuring that data transmitted over the network is secure.

In conclusion, Cace Technologies AirPcap Wireless Capture Adapters are versatile and powerful tools for any network engineer or security professional. With their ability to capture and analyze a wide range of wireless traffic, their compatibility with industry-standard tools, and their advanced features, AirPcap adapters are indispensable in today's increasingly wireless world. Whether used for routine monitoring, troubleshooting, or security assessments, these adapters offer a robust solution for wireless network management.
Top Page Image Contents