Using Network Analyzers

Using Network Analyzers

To run network analyzer software, you may need to reconfigure the Ringnode, Smartrom, and network drivers to enable your computer to use Promiscuous Receive Mode.

In Promiscuous Receive Mode a networked computer receives information that is not addressed to it, as well as information that is. This enables a network analyzer to monitor all the traffic on the network.

Since all the traffic on the network is visible to network analyzers, they represent a security risk. To protect your network, perform the following steps.

NoteIf you run network analyzer software on computers that have MADGEODI.COM or MADGEODI.LAN loaded, you do not need to perform the steps below. When you run the network analyzer, these drivers allow Promiscuous Mode by default.

To enable Promiscuous Receive Mode:

  1. Enable the Smartrom and program the enable option, /PROMRX with the SMARTROM.EXE utility.

  2. If you are using an NDIS3 driver, set the parameters that enable the driver to use Promiscuous Receive Mode.

  3. If you are using other drivers, ensure that they are ones that can operate in Promiscuous Receive Mode: This is available with Fastmac Plus drivers, but not with Smart II Software.

  4. When you have finished running the network analyzer on a workstation or server, we recommend that you secure the computer against unauthorized use of network analyzers, by performing the following steps.

    Preventing unauthorized users from using network analyzers

    To stop unauthorized users from running network analyzers, disable Promiscuous Receive Mode on the computers on your network.

    To disable Promiscuous Receive Mode:

    1. Enable the Smartrom and run SMARTROM.EXE without including /PROMRX on the command line.

      Running SMARTROM.EXE without the /PROMRX option on the command line prevents all DOS drivers from using Promiscuous Receive Mode.

    2. Set a password for your Ringnode, to ensure that no unauthorized person can alter the configuration of the Smartrom.

    3. If you are using an NDIS3 driver, set the parameters that disable Promiscuous Receive Mode.

    4. For added safety, load drivers that do not permit network analyzer software to run. The Smart II Software does not run in Promiscuous Receive Mode, and therefore, will not work with network analyzers.