How to Monitor HTTP Traffic with Network Analyzer
Hypertext Transfer Protocol (HTTP) is an application-level protocol for distributed, collaborative, hypermedia information systems. Its use for retrieving inter-linked resources led to the establishment of the World Wide Web.
In order to monitor http traffic, we will need a network analyzer (or a protocol analyzer) software. Here is a detail process how we can monitor http traffic in LAN with Colasoft Network Analyzer – Capsa.
Again let’s launch Colasoft Network Analyzer and start a new project. Don’t forget one thing, we have to deploy the network analyzer to the mirror port of the core switch in order to monitor all http traffic in LAN, if not, we can only monitor http traffic of our own computer.
Then let’s start browsing a website, for example, www.colasoft.com, to generate some http traffic. Now let’s get back to the network analyzer and see if there is http traffic. OK, we can see the network analyzer has already captured some http traffic in the “Protocols” Tab
We can see both the aggregated http traffic since start capturing and the real-time http traffic in this tab.
If we want to do a deeper analysis on http traffic, we will need to use the “Locate” function to locate http protocol in the Explorer to let the network analyzer display only the data that is http protocol. Right click on the protocol and select “Locate Explorer Node” in the pop-up menu.
If we want to know who are using http protocol and what they are actually browsing, we are going to use two tabs, the “Endpoints” Tab and “Logs” Tab.
Let’s see who are using http protocol:
And what they are actually browsing:
In order to monitor http traffic, we will need a network analyzer (or a protocol analyzer) software. Here is a detail process how we can monitor http traffic in LAN with Colasoft Network Analyzer – Capsa.
Again let’s launch Colasoft Network Analyzer and start a new project. Don’t forget one thing, we have to deploy the network analyzer to the mirror port of the core switch in order to monitor all http traffic in LAN, if not, we can only monitor http traffic of our own computer.
Then let’s start browsing a website, for example, www.colasoft.com, to generate some http traffic. Now let’s get back to the network analyzer and see if there is http traffic. OK, we can see the network analyzer has already captured some http traffic in the “Protocols” Tab
We can see both the aggregated http traffic since start capturing and the real-time http traffic in this tab.
If we want to do a deeper analysis on http traffic, we will need to use the “Locate” function to locate http protocol in the Explorer to let the network analyzer display only the data that is http protocol. Right click on the protocol and select “Locate Explorer Node” in the pop-up menu.
If we want to know who are using http protocol and what they are actually browsing, we are going to use two tabs, the “Endpoints” Tab and “Logs” Tab.
Let’s see who are using http protocol:
And what they are actually browsing:
0 comments:
Post a Comment