Step-1: Configure the target access point by following the steps below:
Step-2: Configure The Wireshark Network Analyzer application ("Wireshark") to start capture from the remote host (i.e.: Access Point)
- Identify the target Access Point (AP) in the Controller GUI interface
- Note that access point's IP from it's Static Configuration (This information will be needed when configuring The Wireshark application)
- Go to the Advanced under AP Properties of the AP
- Set preferred duration of traffic capture (default is 300 seconds)
- Click Start
- Make sure the AP is reachable from the PC running Wireshark.
- Open WireSharkand click on Capture and then Options
- Click on Manage Interfaces button (located in the lower right corner of the main window)
- The Manage Interfaces window will open.
- Click on Remote Interfaces tab, then click "Add" ("+" button in lower left corner)
- Type the IP address of the target AP in the "Host:" box
- Leave the "Port:" box blank
- Keep the default "Null authentication" radio button selected.
- Select the interface(s) you want to capture packets
Note: If you want to capture the wired port, make sure eth0 is checked off (selected).
If you want to capture the radio (air) that the test client is on, check off wifi0 for Radio 1, or wifi1 for Radio 2.
To determine what radio the test client is on, please view and locate the test client in one of the reports on the wireless controller such as "Clients by VNS".
- Start the packet capture
- Begin the test packet transmission on the suspect device
- End the packet capture upon completion of transmission and save the trace for further analysis.