Filter
Top Products
System > Packet Monitor
141
SonicOS 5.8.1 Administrator Guide
Default settings are provided so that you can start using packet monitor without configuring it
first. The basic functionality is as follows:
Start:Click Start Capture to begin capturing all packets except those used for
communication between the SonicWALL appliance and the management
interface on your console system.
Stop:Click Stop Capture to stop the packet capture.
Clear:Click Clear to clear the status counters that are displayed at the top of the
Packet Monitor page.
Refresh: Click Refresh to display new buffer data in the Captured Packets window. You
can then click any packet in the window to display its header information and
data in the Packet Detail and Hex Dump windows.
Export As: Display or save a snapshot of the current buffer in the file format that you select
from the drop-down list. Saved files are placed on your local management
system (where the management interface is running). Choose from the
following formats:
• Libpcap - Select Libpcap format if you want to view the data with the
Wireshark (formerly Ethereal) network protocol analyzer. This is also
known as libcap or pcap format. A dialog box allows you to open the buffer
file with Wireshark, or save it to your local hard drive with the extension
.pcap.
• Html - Select Html to view the data with a browser. You can use File >
Save As to save a copy of the buffer to your hard drive.
• Text - Select Text to view the data in a text editor. A dialog box allows you
to open the buffer file with the registered text editor, or save it to your local
hard drive with the extension .wri.
• App Data - Select App Data to view only application data contained in the
packet. Packets containing no application data are skipped during the
capture. Application data = captured packet minus L2, L3, and L4 headers.