TEST TOOLS
Wireless Network Protocol Analyzers
You Are Here: HOME LITERATURE JUST THE FACTS TEST TOOLS

WLAN and Ethernet Network Protocol Analyzers and Test Tools

Isolate and Describe Network Problems
Capture - Decode - Measure - Analyze - Detect - Plan

 
A protocol analyzer captures data packets, decodes their contents, and reports the results, often using expert system automated analysis or graphic representation of data. A spectrum analyzer measures RF signal energy and reports the physical characteristics of the electromagnetic signals.
 
"What's the difference...?"
Spectrum Analyzer
  • Specialized RF measurement circuitry detects electromagnetic radiation
  • RF characteristics are directly measured by the specialized circuitry
  • Detailed, instantaneous waveform, frequency, wavelength, and signal strength measurements are available
  • Designed for use by an RF engineer for complex, specific RF signal analysis
  • Packet-level network data is not captured or decoded
  • Presentation of information centers around an oscilloscope-like display of the real-time waveform
 
Handheld RF Test Equipment
  • Specialized RF measurement circuitry detects electromagnetic radiation
  • RF characteristics are directly measured by the specialized circuitry
  • Limited, and generalized waveform display
  • Designed for field use by an RF engineer needing to know about signal transmissions in a particular location
  • Packet-level network data is not captured or decoded
  • Presentation of information centers around numeric and graphic representations of basic RF measurements
 
Protocol Analyzer
  • Standard 802.11 or Ethernet hardware acquired data, control, and management packets
  • RF characteristics are reported by the 802.11 chipset and read by the analyzer in packet-level data
  • General signal strength, noise, and channel usage information is available
  • Designed for use by a network engineer for troubleshooting, performance, and site survey analysis
  • Packet-level network data is captured, decoded, and (often, as with AirMagnet) automatically analyzed by an expert system
  • Presentation of information centers around graphs, tables, reports, and decodes of packet-level information
 
Handheld Protocol Analyzer Equipment
  • Standard 802.11 or Ethernet hardware acquired data, control, and management packets
  • RF characteristics are reported by the 802.11 chipset and read by the analyzer in packet-level data
  • General signal strength, noise, and channel usage information is available
  • Designed for field use by a network engineer needing quick, general information about a particular location
  • Presentation of information is limited by the small size of the display screen on a handheld device
 
Distributed Protocol Analysis Systems
  • The functionality of a Protocol Analyzer is distributed to multiple locations throughout a building and corporate campus
  • An ideal system pushes analysis and processing out towards the remote devices
  • A worst-case system simply pulls data traffic back to a central system for local analysis
  • Pulling traffic back for local analysis creates a potentially significant extra load on the network
  • Intelligent correlation of distributed events is a key capability for automated distributed analysis
  • Remote probes may be software agents or dedicated hardware devices
 
 
Examples of 802.11 Wi-Fi Protocol Analysis Test Tools
Carried By Connect802
  Click on an image to go to the Connect802 vendor page for the product family  
 

AirMagnet Portable 802.11 Wireless Network Analyzer

The WLAN protocol analysis and monitoring software, expert system, and reporting engine run in a notebook computer. Expert system analysis and protocol decoding is extensive. Because the resources of a high-capacity computer are available the expert system and analysis features are extensive.

 

AirMagnet Handheld 802.11 Wireless Network Analyzer

The WLAN protocol analysis and monitoring software runs in a Compaq iPaq. The limitations of a handheld computer make monitoring functions the focus of the handheld tool. Packet decoding is good but expert system functionality is limited.
 

The AirMagnet SmartEdge Intelligent Sensor

This remote probe has both 802.11b/g and 802.11a monitoring and security scanning features. It is not an 802.11 access point. Some processing of data is done in the Sensor, and other processing is done in remote, distributed management servers as opposed to just shipping data back to a console application.

 

AirMagnet Distributed Enterprise Monitoring and Analysis Server

This is software to interact with distributed Sensor probes throughout a distributed enterprise WLAN. A console application acquires consolidated, pre-processed data from multiple management servers, each of which directly interrogates multiple Sensors.
     

The Connect802 Perspective

The design goal for our Connect EZ Solution Suite product and service packages is to minimize or eliminate the need for on-going maintenance and management of the wireless network system after it's installed and configured. For many wireless networks the requirement for on-going performance assessment, confirmation of system operational status, and security monitoring demands the implementation of tools and equipment for network analysis. Connect802 makes these tools available and provides technical support services to make them effective.

Connect802 Corporation is an AirMagnet Technology Partner, providing of 802.11 wireless test and analysis equipment. These tools help network engineers quickly isolate and describe network problems, identify security exposures, and monitor network performance.

Protocol Analysis Tools

A protocol analyzer is a tool that captures data packets from the network and helps a support engineer understand the behavior and performance of the devices that are communicating. By reading the flow of conversations between machines on the network an evaluation can be made as to the rate of data transfer (throughput), "correctness" of the system configuration, and identification of potential security or intrusion issues.

Management Consoles

When a network has a number of access points or other pieces of equipment spread out throughout a large building, a corporate campus, or in multiple cities or states, it isn't practical to have a service technician or network engineer physically walk, drive, or fly to each location for configuration, troubleshooting, or system maintenance. A central control and management console system allows all of the remote devices to be configured and monitored from a central location.

Intrusion Detection Systems

Wi-Fi networks, when properly configured, provide protection against unauthorized access or the revealing of private information. Detecting attempts to break in to a network, or situations where misconfigurations or unauthorized equipment may be present is the job of an intrusion detection system. Since any network user could potentially buy a low-cost access point at their local computer store and plug it in to the network the possibility exists that physical network security measures could be circumvented. Of course, the more important privacy is to a particular network, the more "levels" of security will be added to augment physical system security. In any case, an intrusion detection system monitors the network, looking for unauthorized access attempts or exposed private information. The network administrator is notified when a security breach occurs.
     

The use of SNMP (Simple Network Management Protocol) and RMON (Remote Monitoring) as part of a distributed network performance management system allows data acquisition of statistical metrics from suitably enabled SNMP devices. These can include switches and routers or stand-alone probe devices. The management of enterprise-wide networks requires both assessment and reporting of statistical information and measurements to give a centralized view of network health and the ability to collect and collate network data from multiple sources including RMON1 and RMON2 and SNMP devices. In addition to the data collection from 10/100 Ethernet, Gigabit Ethernet, ATM, Frame Relay, Packet over SONET (POS), and the 802.11 wireless Ethernet LAN it's necessary to capture, decode, and analyze packet-level data including TCP/IP network analysis, AppleTalk network protocol analysis, and protocol analysis for DNS, DHCP, HTTP, SMTP, and other network packet-level elements. These are reasons why you use LAN protocol analysis and distributed network analysis equipment.

In general, you want to be able to:

  • Provide problem resolution through the automated and manual analysis of aggregated network-wide views of data across multiple LAN and WAN technologies.
  • Create a network management and troubleshooting system that allows seamless integration between problem isolation, problem description, troubleshooting, capacity planning, and performance and security monitoring.
  • Provide a capability to "drill down" from generalized reports and graphs to specific packet-level decode issues.
  • Minimize protocol analysis training and education time by having a consistent user interface between portable, handheld, and distributed network analyzer user interfaces.

From a functional standpoint, features to evaluate and compare include a network protocol analyzer's ability to:

  • Gather, analyze, and decode packet-level information
  • Report VLAN statistics
  • Capture and decode wireless and/or wired traffic on the network
  • Monitor the health and security of the 802.11 wireless LAN
  • Provide automatic notifications of problem events
  • Perform application analysis
       
Tell Us What You Think: Questions, Comments, Technical and Website Feedback
Terms of Use and Privacy Policy © Copyright by Connect802 Corporation - All Rights Reserved