How do I use this program? What is a packet? How do I print the list of packets? What is HTTP? What is the "ACK time-out" for? What does the "Match case for Find and Filters" do? Question: How do I use this program? Answer: For Packet Sniffer Mode: 1. Choose "Choose" from the "Interface" menu, then choose the appropriate interface in which to listen. 2. Press the "Start" button located on the main dialog. 3. Wait for one or more packets to arrive, durring this time you may minimize the window as you will be notified in the event of a packets arrival by way of PC-Speaker sound (If available), and by way of the programs text in the taskbar blinking. 4. When one or more packets have arrived they will appear in the list located on the main dialog. You may then click one of these items to view it's contents. For File Sniffer Mode: 1. Choose "Choose" from the "Interface" menu, then choose the appropriate interface in which to listen. 2. Where it says "Directory to store constructed files" enter the directory you would like the constructed files to be placed in. 3. Press the "Start" button located on the main dialog. 4. When HTTP traffic is detected, the "Files processing" under "Current status" will show the number of file streams currently being followed. 5. The "Files written" under "Current status" shows the number of files that have been written since the "Start" button has been pressed. Once one or more files have been written, you may go to the directory chosen with "Windows® Explorer" or "My Computer" to view the files that have been written, also you may open these files directly with your browser. Question: What is a packet? Answer: The way data is transmitted on a network is in the form of what are called packets, a packet is data. The first part of a packet is what is known as the packet header, this contains information such as where the packet is intended to go, where it came from, and much more. The second part of a packet is what is known as the packet data, this contains the extra information that is to be sent and is usually essential to the workings of what the packet is used for. A common packet is the ping packet (ICMP), this packet is sent from one computer to one or more other computers on a network, the computers that are at the address(es) specified should return a ping packet to inform the sender of thier connectivity to the network. There are many different kinds of packets, all of which have their own properties and uses, some common types of packets are: TCP, UDP, ICMP, and ARP. Of these types, TCP is the most used on the internet. TCP is used for things like HTTP (The protocol used for viewing web pages), FTP (A common protocol used to transfer files). and POP (The protocol used to check standard e-mail) Question: How do I print the list of packets? Answer: 1. Save the list by choosing File--Save. 2. Open the list in a text editor (Notepad, Word, Wordpad, ext.). 3. Choose File--Print in the text editor. Question: What is HTTP? Answer: HTTP is the protocol over which the images and documents on web-pages are transferred. Question: What is the "ACK time-out" for? Answer: The "ACK time-out" determines how long to wait after receiving a packet from a file stream to determine that stream to be a complete file. Entering a number too small will cause incomplete files to be written to the disk. Under a busy network condition entering a number too large may cause the programs max allow-able streams (1000) to be reached resulting in missing some files that are being transferred. Entering a number too large also further delays the writing of files to the disk. Question: What does "Match case for Find and Filters" do? Answer: This setting allows you to choose whether or not you wish for the packet filter text(s), and the Find text to be case sensitive (UPPER CASE vs. lower case).
	All content is copyright © 1999-2002 NetworkActiv All rights reserved.