Wireshark captures lots of data, even with an interface filter set.
We recommend using a diagnostic switch in front of the device you’re working with, as unicast messages will likely not be picked up by the NIC directly this will mirror all traffic going to and from that device to your machine, giving you a better view of the traffic you are interested in. I generally like to capture all network traffic and then filter down to only the packets I’m interested in but filters can be applied to the desired network interface before capturing begins to save on space, the following screenshot shows how to filter on the standard BACnet UDP port of 47808:Īt this point it’s important to note that Wireshark will only be able to capture what the machine running it can see on the network. Wireshark is a free, open source, packet capture utility that can be used to analyze network traffic in general and includes functionality to capture and inspect BACnet packets right out of the box. Most technicians I work with are already familiar with this free utility but every once and a while I come across someone who isn’t familiar with it at all or has only heard about it in passing from other techs. Often when handling support issues I ask customers to take a Wireshark capture in order to help diagnose and isolate the root cause of networking issues.
0 kommentar(er)
