How can I capture raw 802.11 frames, including non-data (management, beacon) frames?
来源:互联网 发布:linux怎么解压war包 编辑:程序博客网 时间:2024/05/01 09:33
原文地址:https://www.wireshark.org/faq.html
10. Capturing packets on wireless LANs
Q 10.1: How can I capture raw 802.11 frames, including non-data (management, beacon) frames?
A: That depends on the operating system on which you're running, and on the 802.11 interface on which you're capturing.
This would probably require that you capture in promiscuous mode or in the mode called "monitor mode" or "RFMON mode". On some platforms, or with some cards, this might require that you capture in monitor mode - promiscuous mode might not be sufficient. If you want to capture traffic on networks other than the one with which you're associated, you will have to capture in monitor mode.
Not all operating systems support capturing non-data packets and, even on operating systems that do support it, not all drivers, and thus not all interfaces, support it. Even on those that do, monitor mode might not be supported by the operating system or by the drivers for all interfaces.
NOTE: an interface running in monitor mode will, on most if not all platforms, not be able to act as a regular network interface; putting it into monitor mode will, in effect, take your machine off of whatever network it's on as long as the interface is in monitor mode, allowing it only to passively capture packets.
This means that you should disable name resolution when capturing in monitor mode; otherwise, when Wireshark (or TShark, or tcpdump) tries to display IP addresses as host names, it will probably block for a long time trying to resolve the name because it will not be able to communicate with any DNS or NIS servers.
See the Wireshark Wiki item on 802.11 capturing for details.
Q 10.2: How do I capture on an 802.11 device in monitor mode?
A: Whether you will be able to capture in monitor mode depends on the operating system, adapter, and driver you're using. Seethe previous question for information on monitor mode, including a link to the Wireshark Wiki page that gives details on 802.11 capturing.
- How can I capture raw 802.11 frames, including non-data (management, beacon) frames?
- frames
- Frames
- R Programming -- data frames
- pyspark-Data Frames
- ios学习--How to capture video frames from the camera as images using AV Foundation
- How to capture video frames from the camera as images using AV Foundation
- How to capture video frames from the camera as images using AV Foundation on iOS
- R——Data Frames
- PCM data flow之六:Frames & Periods
- swirl 7: Matrices and Data Frames
- PCM data flow - part 6: Frames & Periods
- id3v2_4_0 frames
- Jumbo Frames
- jumbo frames
- frames框架
- Canvas Frames
- Canvas Frames
- spring+hibernate架构中Dao访问数据库的几种方法
- 程序员技术练级攻略
- linkflags += -Wl
- thread
- HDU2491 贪心
- How can I capture raw 802.11 frames, including non-data (management, beacon) frames?
- 静态链接(续)
- hdu1010(深搜 +剪枝)
- jsf中导入css文件
- 802.11成帧封装实现(二)
- C++ 面试题
- DataGridViewComboBoxCell设置值的注意事项
- java_Tomcat_连接池之入门与应用
- poj2195 二分图带权最小匹配
