Question : use wireshark to capture whats happening during the logon process

Hi all,

i was wondering how i would record via wireshark what a machine is doing during logon (im tryign to debug a vista problem) do i install wireshark on the machine in question and do something to make it start capture on start up?

or should i put it on the domain controller and watch for traffic coming from that laptops ip?

THanks

Answer : use wireshark to capture whats happening during the logon process

Installing Wireshark on the default gateway computer (DC) would be the best method. You can also check out how to start wireshark to capture from the command line and create a scheduled task which starts when the computer starts up. Microsoft Network Monitor is another great free tool to capture network traffic.
Random Solutions  
 
programming4us programming4us