Currports (and TCPView) outputs are quite different in both form and purpose (see fig 3 for a currports segment). And there is pretty good documentation and tutorial information on their website. This tool is configured with Windows Server and is easier to use than Wireshark. It is a packet analyzer and network monitor tool that helps in explaining the network traffic with help of visualization or presentation of all the details in a compact form. Besides the timeline, you can select each line and get additional information on what is actually happening. ColaSoft Capsa It is another alternative to Wireshark. I have also used Wireshark to do things like analyze potential problems in SSL/TLS handshaking for mail servers. Second attachment is the more complex case of setting up a wireless network using DHCP. See the first attachment for a look at a simple Wireshark case showing an application retrieving Windows time. But Wireshark is a dynamic protocol analyzer observing the actual packet traffic between your computer and the network (AKA packet sniffer-formerly known as ethereal to the Linux crowd ). I certainly don't see Currports and TCPView as substitutes for Wireshark-maybe for each other? They are valuable in providing a moving snapshot of your network connections as seen by your computer.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |