it looks like you are sniffing some traffic, but there is nothing of substance
the lines that say 'sniff: timestamp=xxx ...' are individual tcp packets - you are getting standard 60-byte packets, with a 20-byte header plus 34 bytes. that leaves a payload of 6 bytes. but the payload is only the bytes 02 04 02 18 00 00 which does not look like data from the weather station, so the interceptor ignores them so lets decode one of the packets to see exactly whose conversation you are sniffing. it used to be kinda fun (if rather monotonous) to decode these by hand, but now there are web sites that do it for you. try this one: http://packetor.com/ paste in a packet such as this one: c4 71 54 35 98 c0 00 04 a3 91 5c 9d 08 00 45 00 00 2c b9 bd 00 00 64 06 a5 84 c0 a8 02 97 7b 01 b9 49 12 00 00 50 f7 0e c6 35 00 00 00 00 60 02 00 64 d4 3f 00 00 02 04 02 18 00 00 and it gives you lots of stuff. we can see that the source is 192.168.2.151 and the destination is 123.1.185.73. destination port is 80 nslookup and dig do not tell us anything about 123.1.185.73. whois tells us it is owned by "NWT Broadband Service", and appears to be based in hong kong. but you can get that from the web site that did the packet decoding. it looks like most of the packets you posted are like that. so the lw301 is probably trying to phone home. if you try to hit 123.1.185.73 directly on port 80, you'll get a timeout. does not matter whether i use a web browser, or curl or wget. they could be blocking based on user agent, but that is doubtful, since there is not even an initial handshake. i seem to recall that oregon scientific abandoned all of their lw30x users when they shut down their online service some time ago. do you know if that is true? does your lw301 work properly when left to itself? so instead of sniffing, try listening. when the interceptor is in listen mode, it will behave as if it were the oregon scientific servers, so your lw301 will never know the difference. sniff mode is generally for the cases where you want the device to talk to the mothership, and you just want to eavesdrop listen mode is when you want to be the mother m -- You received this message because you are subscribed to the Google Groups "weewx-user" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
