546
edits
WiFi: Difference between revisions
Jump to navigation
Jump to search
no edit summary
mNo edit summary |
No edit summary |
||
| Line 9: | Line 9: | ||
* '''Device''': the name with which the device identifies itself. This is not unique but multiple devices with the same name keep a stable order in the list. | * '''Device''': the name with which the device identifies itself. This is not unique but multiple devices with the same name keep a stable order in the list. | ||
* '''Maximum receive speed:''' This shows the current USB speed used for the WiFi device. Usually it is either 480 Mbit/s or 5000 Mbit/s. For low to medium traffic, USB2 speed is usually enough but for higher throughput. The correct (blue) USB3 port must be used to get full speed. | |||
* '''Enable WiFi monitoring:''' controls if the device should be used to monitor WiFi traffic. | * '''Enable WiFi monitoring:''' controls if the device should be used to monitor WiFi traffic. | ||
* '''Channel:''' selects the frequency on which the device should monitor. | * '''Channel:''' selects the frequency on which the device should monitor. | ||
| Line 23: | Line 24: | ||
If traffic can be decrypted the packets are converted into Ethernet packets with the appropriate source and destination MAC addresses. These Ethernet packets are then analyzed and potentially captured by the system just like regular Ethernet packets from a wired network interface. | If traffic can be decrypted the packets are converted into Ethernet packets with the appropriate source and destination MAC addresses. These Ethernet packets are then analyzed and potentially captured by the system just like regular Ethernet packets from a wired network interface. | ||
=== Tips for improved capturing performance === | |||
# On some devices such as the Allegro 500 the WiFi device does not come up in USB3 mode if the device is already connected when powering the device up. Connect the device after the system is completely booted to get full USB3 speed. | |||
# The achievable speed of the WiFi decryption depends on the Allegro model. More powerful models can of course also achieve higher decryption speeds, but the model Allegro 200 does not have hardware decryption available and it is therefore limited in the amount of traffic to decrypt. | |||
# The reception is highly influenced by the location of antenna. Especially when advanced WiFi techniques like beam forming are used, it may happen that only parts (or even none) of the traffic is seen at the capture device. For better results, try to place the antenna as near as possible to the receiver or sender, or in between two devices of interest. You can check the TCP stats about [[TCP module#Missed data|missed data]] to see if there is significant traffic not seen by the Allegro device. | |||