Using Network Analyzers

Using Network Analyzers

To run network analyzer software, you may need to reconfigure the Ringnode, Smartrom, and network drivers to enable your computer to use Promiscuous Receive Mode.

In Promiscuous Receive Mode a networked computer receives information that is not addressed to it, as well as information that is. This enables a network analyzer to monitor all the traffic on the network.

Since all the traffic on the network is visible to network analyzers, they represent a security risk. To protect your network, perform the following steps.

If you run network analyzer software on computers that have MADGEODI.COM or MADGEODI.LAN loaded, you do not need to perform the steps below. When you run the network analyzer, these drivers enable Promiscuous Mode by default.

To enable Promiscuous Receive Mode:

  1. Enable the Smartrom and include /PROMRX on the SMARTROM.EXE command line. For information about running SMARTROM.EXE, refer to Configuring your Smartrom (Use the browser's BACK button to return to this page).

  2. If you are using an NDIS3 driver, set the parameters that enable the driver to use Promiscuous Receive Mode.

  3. If you are using other drivers, ensure that they are ones that can operate in Promiscuous Receive Mode: the Smart Software drivers do not permit you to use Promiscuous Receive Mode. Use Fastmac drivers instead of the Smart Software.

  4. When you have finished running the network analyzer on a workstation or server, we recommend that you secure the computer against unauthorized use of network analyzers by performing the following steps.

    Preventing unauthorized users from using network analyzers

    To stop unauthorized users from running network analyzers, disable Promiscuous Receive Mode on the computers on your network.

    To disable Promiscuous Receive Mode:

    1. Enable the Smartrom and run SMARTROM.EXE without including /PROMRX on the command line.

      Running SMARTROM.EXE without the /PROMRX option on the command line prevents all drivers (except SMART386.LAN, and MADGEODI.LAN) from using Promiscuous Receive Mode.

    2. Set a password for your Ringnode, to ensure that no unauthorized person can alter the configuration of the Smartrom.

    3. If you are using an NDIS3 driver, set the parameters that disable Promiscuous Receive Mode.

    4. For added safety, load drivers that do not permit network analyzer software to run. The Smart Software does not run in Promiscuous Receive Mode, and therefore, will not work with network analyzers.

      [BACK]