Brand new to Wireshark!
Hello Wireshark friends. I'm a systems administrator but I don't have any experience with Wireshark. I know it is a very powerful tool so I'd like to get into using it more.
To start off I have a particular type of packet I'd like to capture. I'm trying to capture packets to/from my IPTV. Here is my issue. My IPTV is in a different subnet than my local subnet. But, there is only one modem that is handling all this traffic.
The internet subnet is 192.168.1.x and the IPTV subnet is on another subnet. How would I go about capturing the packets that go to the IPTV. My goal is I'm trying to bypass the router so I can put in my own router but I don't want to affect anything. I am pretty sure if I just plug in the other router it won't work. I am sure I have to configure something on the other router. Before getting to that part I'd like to know if there is a way for me to know how to see what is making the IPTV work.
Something interesting is when I do a netscan (like angry IP) and I put in the subnet of the IPTV all the IP's come back empty except for the IP of the Television. I'm not sure if that means anything but I should probably share that info
Any ideas? Thanks
What kind of modem do you have, which type?
It's a sagemcom fast 5566 I'm also trying to figure out how to put it in factory default mode but I can't figure that out either. I'm really just trying to either get it in bridged mode or figure out how to understand the wireshark commands to capture traffic from the mac address of the television receiver. At this point I'm almost even tempted to get another modem that has an SFP port and just test from there.
Maybe you should start reading into this first. Keep in mind that the modem has a 4 port switch build in. So it has a WAN port / fiber port, then some internal stuff, ie. router function, firewall, etc., then switched LAN/WLAN ports.
Ive realized that from within the router i am able to see what the mac address is of the tv receiver am i able to monitor the traffic going to that receiver?? also, are we able to see if the traffic going to that receiver is on a seperate vlan? im asking because i believe the traffic is translated to the receiver because the receiver operates on the wireless network, which is on the local subnet. from what i can see inside the router the TV IP is 10.x.x.x but the local subnet is 192.x.x.x the tv receiver works wirelessly so something is translating the 10.x.x.x to a 192.x.x.x
does that make sense? and if it does, what would be the most logical way to capture those packets?
You understand that capture has nothing to do with subnet or VLAN and such? It's all about the medium, can you get access to the medium that carries the packets. Now you state that the traffic is transferred via wireless LAN, so that changes things. Now you have to either a) setup wireless capture, or b) use the capture option of your 'wireless router' (if it has such feature).