Sunday, August 17, 2008

Network Packet Sniffer and Network Analyzer

Brief Introduction

We have tested products from many countries, but today we have a first: a Windows network packet capture and protocol analyser from China. Capsa Enterprise is made by Colasoft, and we are very impressed.

The core features of Capsa Enterprise provide real-time packet capture, in-depth protocol analysis, automatic network-event diagnosis and reporting. Beyond looking good, what makes this product stand out is the depth and range of the ways it analyses captured network packets.

Capsa Enterprise monitoring sessions are set up as projects. A project consists of the adapters to be monitored, the filters used to restrict the endpoints and protocols that are tracked, the diagnosis analysers (routines that watch for and analyse events that are not to specification) that are to be applied and other options.

You can specify how big Capsa's buffer should be and whether the buffer is used as a circular (ring) buffer or a linear buffer. The linear buffer simply stops capturing packets when the buffer is full, keeps the buffer and analyses new packets that then are dropped, or it dumps the entire buffer, keeping the stats gathered up to that point, and starts refilling the buffer.

Features

  • Smart Real-time packet capturing and analyzing
  • Reconstructs TCP/IP sessions and enables you to see data in their original format
  • Capture, display and save transaction information such as user name and password and the entire message
  • Capture Pop3 and SMTP emails, display and save in Outlook Express Message Format
  • Capture HTTP traffic for you to view all Internet web traffic
  • Powerful Packets Viewer to examine data in plain English
  • Protocol decodes on TCP/UDP//IP suite and application protocols including POP3, SMTP, HTTP, TELNET, FTP
  • Powerful filter provides a general and flexible mechanism for user to focus on useful packets
  • Trace TCP connection states and display bandwidth usage and other critical information
  • Support multiple monitors and terminal server
  • Suppot both Ethernet and 802.11 wireless infrastruture.

External links

1 comment:

Unknown said...

Indeed, Capsa does a good performance on network security monitor. So many bread-and-butter featured functions, and easy to use...However, I wanna submit a suggestion that it will be much better if you have the "alert"..

Free counter and web stats