zhangqj
asked on
Fail to use Network Monitor.
I always got failure while using Network Monitor V4.00.351. The error message is "The MAC driver does not support promiscious mode.". Please advise why?
Hardware: IBM Thinkpad model 380XD
PCMCIA TokenRing NIC with the newest NIC driver downloaded from IBM
Software: Win98/WinNT4.0+SP4 and "Microsoft Network Monitor Agent" installed in advance
TCP/IP & NetBEUI enabled
Ways have tried:
Enable/Disable the "Allow Full Duplex" of NIC setting but helpless
Hardware: IBM Thinkpad model 380XD
PCMCIA TokenRing NIC with the newest NIC driver downloaded from IBM
Software: Win98/WinNT4.0+SP4 and "Microsoft Network Monitor Agent" installed in advance
TCP/IP & NetBEUI enabled
Ways have tried:
Enable/Disable the "Allow Full Duplex" of NIC setting but helpless
You can't use NM with regular NIC driver,
becose regular drivers is able to capture only
packets send directly to this mashine + broadcasts
You must find and use special kind of driver,
which able to work in promiscious mode
(in this mode driver able to capture all packets,
even they send to another mashine)
Unfortunately, not all NIC have promiscous mode driver ;-(
So, to bve in short: find promiscous mode driver,
or replace NIC to one which have required driver
becose regular drivers is able to capture only
packets send directly to this mashine + broadcasts
You must find and use special kind of driver,
which able to work in promiscious mode
(in this mode driver able to capture all packets,
even they send to another mashine)
Unfortunately, not all NIC have promiscous mode driver ;-(
So, to bve in short: find promiscous mode driver,
or replace NIC to one which have required driver
ASKER
I don't think aioudine's response has answered my question, the problem is still there. Anyway, Thanks!
I am afraid that zhangqi is absolutely right. Almost ALL readily available drivers for Win95/NT are NOT capable of promiscous mode operation. Most of the time an application that does packet sniffing and such comes with a driver/drivers for certain brands of NICs and that is just how it is. I personally have seen promiscous mode drivers for some 3com/Intel NICs but only for ethernet and they dont work with Network monitor, They are hardcoded to work with a program called NetManage with does some of the same stuff. Hope this helps
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks bbao!
I can now use NM in WinNT4.0 but its Filter should be set as point to point, if I set any to any, the problem is the same.
One more, NM cann't be used in Win98 yet, I know this beyond current discussion area, I actually have post the question in Win98 discussion area.
Thanks to all kind friends!
I can now use NM in WinNT4.0 but its Filter should be set as point to point, if I set any to any, the problem is the same.
One more, NM cann't be used in Win98 yet, I know this beyond current discussion area, I actually have post the question in Win98 discussion area.
Thanks to all kind friends!
You are welcome Chinese friend!
ASKER