Are there any network analyzers that will let you sniff to individual IPs or PCs?
Printable View
Are there any network analyzers that will let you sniff to individual IPs or PCs?
Yes, look for filtering options in the sniffer you are using. I know Ethereal has them.
Ethereal
Cheers:
/edit
Sh*t Irongeek, you beat me..... :p
For additional reference some of the Ethereal filter commands are as follows:-
To get all traffic to/from a host:-
host xxx.xxx.xxx.xxx
To get all traffic a host initiates:- (it will capture both sides of the conversation).
src host xxx.xxx.xxx.xxx
To get all traffic a host receives from another initiating host:- (it will capture both sides of the conversation).
dst host xxx.xxx.xxx.xxx
To get all traffic to a host on a given port:-
host xxx.xxx.xxx.xxx && port xx
You can combine src and dst host with port
Negate something by prodeeding it with "!"
ie: To capture all traffic to/from a host except that on port 3389 the filter looks like this:-
host xxx.xxx.xxx.xxx && !port 3389
Hope this helps.
IronGeek, DJM, Tiger Shark,
Thanks for your help
LanHound works well too