Filter
Top Products
690 Appendix A:Troubleshooting a WSS
NN47250-500 (320657-F Version 02.01)
If the observer is a PC, you can use a Tcl script instead of Netcat if preferred.
1 Install the required software on the observer.
2 Configure and map snoop filters in WSS Software.
3 Start Netcat:
● On Linux, use a command such as the following:
nc -l -u -p 37008 ip-addr > /dev/null &
● On Windows, use the following command:
netcat -l -u -p 37008 -v -v
Where ip-addr is the IP address of the AP to which the snoop filter is mapped. (To display the
AP’s IP address, use the show ap status command.)
4 Start the capture application:
● For Ethereal capture, use ethereal filter port 37008.
● For Tethereal capture, use tethereal -V port 37008.
5 Disable the option to decrypt 802.11 payloads. Because the AP always decrypts the data before
sending it to the observer, the observer does not need to perform any decryption. In fact, if you
leave decryption enabled on the observer, the payload data becomes unreadable.
To disable the decryption option in Ethereal:
a In the decode window, right-click on the IEEE 802.11 line.
b Select Protocol Preferences to display the 802.11 Protocol Preferences dialog.
c Click next to Ignore the WEP bit to deselect the option. This option is applicable for any
type of data encryption used by AP radios.
6 Enable the snoop filter on the AP, using the following command:
set snoop {filter-name | all} mode {enable [stop-after num-pkts] |
disable}
7 Stop the Ethereal capture and view the monitored packets.
The source IP address of a monitored packet identifies the AP that copied the packet’s payload
and sent it to the observer.
Capturing system information and sending it to
technical support
If you need help from the Nortel Enterprise Technical Support (NETS) to diagnose a system problem, you can
make troubleshooting the problem easier by providing the following:
• show tech-support output
• Core files
• Debug messages
• Description of the symptoms and network conditions when the problem occurred