Hello,
I am in middle of troubleshooting the issue and have noticed couple of things.
I have network name resolution checked for MAC and Network layer, sniffer traces does show name resolution during live captures however, as soon as file is saved and re-opened some entries are missing. So, I have couple of queries :-
Does Name Resolution looks at the current workstation cache and if TTL is small the cache will be deleted so, we don't see the mapping later on? - THIS IS JUST GUESS i could not locate any instance from source code. If this is the case, do we have a Enhancement/feature request to save cache in .pcap file as snapshot to maintain consistency in checking saved sniffer traces.
Why there is a difference values shown in Statistics => 'Show name resolution' during live capture and same captures reopened in exact same PC and in different PC.
I can see we have an option to Click "OK" for 'Show name resolution' and it does let us enter text however "OK" button does not seems to be working ( it lets us in same screem). Is this a defect? I am using version 1.10.0 (SVN Rev 49790 from /trunk-1.10). I could not find one in bugzilla.
We have an option for Manually Resolve Name under View => Name Resolution => Manually Resolve Name. However, the value defined is not resolving the name. Is this a know issue as specified in 8462 which shows status as Unconfirmed?. What does status Unconfirmed means and do we have a workaround for this? I can see a host file workaround listed; however, modifying entry for hosts.txt did not worked for me.
Regards,
-Deepak
asked 03 Jul '13, 01:08
Deepak
31●2●2●5
accept rate: 25%
