Tools Such As The Open-Sourced Wireshark Packet Sniffer Along With A MIB Browser From IReasoning Is What You Need To Troubleshoot Your Network. Don't Worry About Your SNMP Remotes, You Can Still Troubleshoot With These Tools.

*The packet sniffer / analyzer known as Ethereal is now called Wireshark. Any mentions of the Ethereal packet analyzer should now be refered to the Wireshark packet analyzer instead. As of currently, software developement on the Ethereal packet analyzer has been halted while developement on the Wireshark version will continue. It is advisable that users of the Ethereal version integrate into using Wireshark. Wireshark is a forked version of Ethereal and so migrating from Ethereal to Wireshark should be relatively simple and straight forward.

It doesn't matter who the manufacturers of your Simple Network Management Protocol (SNMP) remote is. A combination of a packet analyzer and a MIB Browser can you help you troubleshoot a variety of network related problems. Free tools such as the open-source Wireshark packet analyzer and the MIB Browser from iReasoning makes network troubleshooting accessible while also being cost free.

Wireshark is a network protocol analyzer and is available at no cost from www.wireshark.org. It is a free open-source utility that has found itself of use to many different people and is the recipient of many awards. You can use Wireshark to capture, filter, and inspect network packets. It has features such as filters, color-coding, and plug-in support. Filters can be used to show only certain pieces of data while color-coding can make it easier for the user to read the data that is displayed onscreen. Plug-in support is a valuable feature that gives users the ability to dissect new protocols that Wireshark may not be able to by default.

MIB Browser is a SNMP network management utility. A free MIB Browser is available at www.ireasoning.com with some limitation but should have the capabilities that most private users would need. Paid versions are also available to those who needs no restrictions on the numbers of MIBS that are to be loaded while providing aditional features. A MIB Browser is an invaluable utility for monitoing SNMP devices and application and having good MIB Browser is indispensible.

Listed below are the steps for assigning a computer's network interface card (NIC) as the capture interface in Wireshark using a MIB Browser to display SNMP data.

  • First, select a computer on your network that is as close to your SNMP master as possible. Ideally, the PC and the SNMP master will be directly connected to the same hub. Hubs are better suited for this analysis than switches because they always send all received packets out on all ports. If you use a switch, your computer running Wireshark may not receive the packets that you need to perform your analysis.
  • Install Wireshark and MIB Browser onto the selected computer. Installation should be fairly straight-forward just like most software available today. If you are using a Windows based operating system. Always make sure that the installer is runned with administrator permission so that there are less issues that may come up during the installation process and after the software has been installed successfully.
  • Once the installation has completed. Start Wireshark and the MIB Browser.
  • In Wireshark, assign your computer's NIC as the capture interface in the Capture Options window. You can access the Capture Options window by clicking the Capture menu item and then click Options.
  • In MIB Browser, define the IP and port settings for your SNMP remote.
ethereal packet analyzer capture drop down menu and options tab for setting the network interface card as the network capture interface

The picture above displays a version of Wireshark that used to be called Ethereal. The name has since been altered from Ethereal to Wireshark. Eventhough, the packet analyzer has changed over the years, the settings for both Ethereal and Wireshark are still very similar.

ethereal packet analyzer currently called wireshark and its capture drop down menu and options tab for setting the network interface card as the network capture interface

The picture above displays the capture options on Wireshark. As you can see, accessing the capture options is almost identical to how it would had been done in Ethereal.

Use the navigation bar located at the top and bottom of this page to read more about packet sniffer / analyzer and MIB Browser.