thewhirlwind
asked on
Monitor / Sniff remote IP
Is it possible to sniff packets on a remote network / public IP address?
I belive it is possible to monitor traffic on a LAN, but any tools or methods out there to monitor traffic for a webserver on a remote network?
TIA,
thewhirlwind
I belive it is possible to monitor traffic on a LAN, but any tools or methods out there to monitor traffic for a webserver on a remote network?
TIA,
thewhirlwind
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
rindi
You can only sniff the total traffic of that remote network. Usually you don't have the server alone using such an IP, often there is some sort of firewall or gadget which is directly connected to the internet, and the server is behind that on a switch or hub, often using another physical, local address. What you then see when using a sniffer is the total traffic from that firewall or gadget, and not just the server. You will be able to see if the "Services" of that server are running or not (again, if there aren't other servers on the same network serving the same service on the same port).
ASKER
Thank you both for the replies:
any suggestion of what application you would recommend for doing this. What I am afraid of is that for example with EE the login process seems not to be secure, so could someone intercept the data packets that contain people's (or my!) login details?
does the interceptor need to sit on the LAN of EE or can he be sitting and sniffing the WAN port of EE's webserver/gateway from a different physical and IP location?
I wish to understand the vulnerability of not using secure logins, wether be it websites, POP3, IMAP, etc.
any suggestion of what application you would recommend for doing this. What I am afraid of is that for example with EE the login process seems not to be secure, so could someone intercept the data packets that contain people's (or my!) login details?
does the interceptor need to sit on the LAN of EE or can he be sitting and sniffing the WAN port of EE's webserver/gateway from a different physical and IP location?
I wish to understand the vulnerability of not using secure logins, wether be it websites, POP3, IMAP, etc.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you all for your feedback, I believe I have a better understanding of essentially how unsecure data can be in a public or even private network.
My next question will be on WLAN security and it's shortfalls.
thewhirlwind
My next question will be on WLAN security and it's shortfalls.
thewhirlwind
thanx too.