Forensic pcap Analysis: Difference between revisions

Forensic pcap Analysis (view source)

46 bytes removed , 9 April 2020

no edit summary

340

edits

@@ Line 1: / Line 1: @@
-== ''' Problem''' ==
+== Problem ==
 How can you use the *Allegro Network Multimeter* for forensic analysis?
 As an example, you would like to process a recorded Pcap file with the
 Allegro Network Multimeter in the lab.
-<br>
+== Warning ==
-== ''' Warning''' ==
 The Allegro Network Multimeter will NOT forward, receive or analyze
 any packets while analyzing pcap files. Traffic forwarding in bridge
@@ Line 11: / Line 10: @@
 and the normal operation mode is restored.
-<br>
+== Preparation ==
-== ''' Preparation''' ==
 The preparation of the Allegro Network Multimeter is very simple.
 We recommend to use this feature with an activated ring buffer to
@@ Line 20: / Line 18: @@
 will guide you to format the disk and to set up the ring buffer.
+== Pcap upload ==
-<br>
-== ''' Pcap upload''' ==
 To use the Allegro Network Multimeter as a forensic analysis tool, navigate
 to "Generic" -> "Pcap analysis" and press pcap upload.
@@ Line 37: / Line 33: @@
 After a file is selected, click the "Upload and analyze pcap" button. A new
 modal dialog will open:
 {|