Hello Everyone, I'm currently facing challenges capturing BACnet traffic using Wireshark in my network setup. In the context of BACnet networking, we are utilizing the YABE (Yet Another BACnet Explorer) tool for device discovery and communication. When YABE sends a ReadProperty request to a BACnet device, Wireshark successfully captures the corresponding packet response. However, we are encountering an issue where no packets are captured when direct device-to-device requests are initiated.
This discrepancy raises concerns about the visibility of BACnet communications in our network setup, particularly regarding the effectiveness of packet capture tools like Wireshark. It suggests potential issues with network configuration, communication protocols, or device settings that prevent successful capture of inter-device communication.
We seek to identify the root cause of this issue to ensure comprehensive monitoring of BACnet traffic, facilitating effective troubleshooting and analysis within our network
Network Setup
- BACnet Devices: Connected via LAN cables to switch
- PC Running Wireshark: Connected to the same switch via a WiFi.
What I have tried:
Wireshark Configuration: Selected the correct network interface. Enabled promiscuous mode. No capture filters applied; I've tried both with and without filters.
Network Check: Ensured that both PC and BACnet are on the same subnet. Pinged the BACnet device from PC successfully. But unable to ping from one PC to the 2nd device which is connected to the 2nd PC.
The Problem:
Despite the above steps, I am unable to capture any BACnet packets in Wireshark.