Windows数据包嗅探器可以捕获回送流量吗? [英] Windows packet sniffer that can capture loopback traffic?
问题描述
(这是我当我测试我们的Windows服务/服务控制器GUI组合时,通常最方便的是在我的开发箱上运行这两个组件.通过这种设置,两者之间的远程通信是通过环回,而不是通过以太网卡.
When I am testing our Windows service / service controller GUI combination, it is often most convenient to run both pieces on my development box. With this setup, the remoting traffic between the two is via loopback, not through the Ethernet card.
在WinXP计算机上是否有任何可以捕获回送流量的软件数据包嗅探器? Wireshark 是一个很好的程序包,但是它只能捕获Windows计算机上的外部流量,而不能环回. >
Are there any software packet sniffers that can capture loopback traffic on a WinXP machine? Wireshark is a great package, but it can only capture external traffic on a Windows machine, not loopback.
推荐答案
您应该做的是运行RawCap,它是一个嗅探器,可以捕获Windows中回送接口的流量.只需以"RawCap.exe 127.0.0.1 loopback.pcap"启动即可.
What you should do is to run RawCap, which is a sniffer that can capture traffic to/from the loopback interface in Windows. Just start it with "RawCap.exe 127.0.0.1 loopback.pcap".
然后您可以在Wireshark或 NetworkMiner 中打开loopback.pcap以查看网络交通.
You can then open up loopback.pcap in Wireshark or NetworkMiner to look at the network traffic.
您可以在此处找到RawCap: http://www.netresec.com/?page=RawCap
You can find RawCap here: http://www.netresec.com/?page=RawCap
祝你好运!
这篇关于Windows数据包嗅探器可以捕获回送流量吗?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
