Salandra, Justin A. wrote:
I am watching my interface in netmon and there is nothing coming up. I see
other traffic on the network.
You could install Ethereal (http://www.ethereal.com) which will capture and
analyze individual packets.
That would answer the question once and for all, since you'd be able to see
details of every single packet. At the rate you're gathering incomming
packets, you should only need a few seconds worth of capture to find out
where it's coming from.
-----Original Message-----
From: Joe [mailto:[EMAIL PROTECTED]
Sent: Monday, October 06, 2003 10:36 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] OT Received Packets
I would guess that it is probably mostly ARP's and other broadcasts. I would
say whomever mentioned the viruses is probably accurate, but open that up to
all of the broadcast and searching viruses like mumu and code red and nimda
and ... And ... And ... And ...
Whatever traffic it is though, it should be readily available in netmon
unless the wrong interface is being watched.
joe
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Gil Kirkpatrick
Sent: Monday, October 06, 2003 2:35 PM
To: '[EMAIL PROTECTED]'
My first thought it might be machine policy, but it sounds like the traffic
is fairly continuous, as opposed to just after boot.
Are you running any p2p software?
-g
-----Original Message-----
From: Salandra, Justin A. [mailto:[EMAIL PROTECTED]
Sent: Monday, October 06, 2003 10:47 AM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] OT Received Packets
Netmon is gathering traffic but not showing all the packets that I am
receiving.
I am finding these numbers by going into Network and clicking on the status
of my network connection. Right now I have 29,000 packets received and
5,000 sent and my laptop has been on for an hour.
-----Original Message-----
From: Gil Kirkpatrick [mailto:[EMAIL PROTECTED]
Sent: Monday, October 06, 2003 1:26 PM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] OT Received Packets
"I have run network monitor and can not find what the traffic is that I am
receiving."
Meaning that NETMON is not showing any traffic? Or that NETMON can't
identify the traffic?
How are you determining that you are actually receiving this traffic?
PERFMON?
-gil
-----Original Message-----
From: Salandra, Justin A. [mailto:[EMAIL PROTECTED]
Sent: Monday, October 06, 2003 5:39 AM
To: ActiveDir (E-mail)
Subject: [ActiveDir] OT Received Packets
This a little off topic, but I have to ask. My Laptop within minutes of
being turned on receives over 7,000 packets and sends only 300 or so. In 15
minutes I will have over 30,000 received packets. My computer is the only
one this is happening too.
I have run network monitor and can not find what the traffic is that I am
receiving. I have run a antivirus scan on my computer with updated DAT
files and found nothing. I have looked at my services and did not find
anything different.
This only happens on my work network, not at home. Does anyone have any
ideas?
Justin A. Salandra, MCSE
Senior Network Engineer
Catholic Healthcare System
212.752.7300 - office
917.455.0110 - cell
[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
--
Bill Moran
Potential Technologies
http://www.potentialtech.com
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
