无法使用wireshark读取从wifi网络捕获的数据包 [英] unable to read packets captured from wifi network using wireshark

问题描述

我使用 ubuntu 10.10 连接到我的家庭 wifi 网络.保护是 WPA2-auto.我想从中捕获数据包.

I am connected to my home wifi network using ubuntu 10.10. The protection is WPA2-auto. I want to capture packets from it.

$ sudo iwconfig wlan0 mode monitor
$ sudo wireshark

我尝试从 wlan0 捕获.我使用 Android 手机和浏览网站连接到 wifi 网络.但是我看不到未加密的 http 数据包.我选择编辑|首选项|捕获|协议并选择 802.11 并为解密数据包"选择是"复选框.依然没有.任何帮助表示赞赏.

I try to capture from wlan0. Am connected to the wifi network with an android phone and browsing websites. However I am unable to see unencrypted http packets. I select Edit|Preferences|Capture|Protocols and select 802.11 and select check box to yes for 'decrypt packets'. Still nothing. Any help appreciated.

推荐答案

解决方案:从 aircrack-ng 项目中运行 airmon，将无线网卡设置为监控模式.(这是 Wireshark 开发人员在邮件列表中指出的，Guy).显然 iwconfig 不能正常工作，因为它在 ubuntu 上有问题.

Solution: run airmon from the aircrack-ng project to set the wireless card into monitor mode. (this was pointed out by a Wireshark developer on the mailing lists, Guy). Apparently iwconfig does not work properly as it has issues on ubuntu.

airmon-ng start wlan0

airmon-ng start wlan0

这会将其设置为监控模式并创建接口 mon0.

This will set it into monitor mode and create interface mon0.

此后，我能够使用wireshark捕获mon0接口.

After this, I was able to capture off the mon0 interface using wireshark.

这篇关于无法使用wireshark读取从wifi网络捕获的数据包的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！