Aufgabe 2 - FH Wedel - Studenten Homepages der FH-Wedel
Aufgabe 2 - FH Wedel - Studenten Homepages der FH-Wedel Aufgabe 2 - FH Wedel - Studenten Homepages der FH-Wedel
2.2 Nutzung zusätzlicher Monitoring-Komponenten Unter der nachfolgenden Adresse finden Sie eine sehr praktische Komponentenbibliothek für das Netzwerk-Monitoring (u.a. Paketaufzeichnung) und zugehörige Beispielprogramme. Magenta Systems Internet Packet Monitoring Components v1.3 Quelle: http://www.magsys.co.uk/delphi/magmonsock.asp Magenta Systems Internet Packet Monitoring Components are a set of Delphi components designed to capture and monitor internet packets using either raw sockets or the WinPcap device driver. Hardware permitting, ethernet packets may be captured and interpreted, and statistics maintained about the traffic. Uses of packet monitoring include totalling internet traffic by IP address and service, monitoring external or internal IP addresses and services accessed, network diagnostics, and many other applications. The component includes two demonstration applications, one that displays raw packets, the other that totals internet traffic. The components include various filters to reduce the number of packets that need to be processed, by allowing specific IP addresses to be ignored, LAN mask to ignore local traffic, and ignore non-IP traffic such as ARP. The components capture packets using two different techniques, with differing benefits and features: 1. Raw sockets which are available with Windows 2000 and later. This uses WSocket V6 from the François Piette internet component suite, from http://www.overbyte.be/. Major benefit is that no other software needs to be installed, but raw sockets don't seem to work fully with some network adaptors, and ignore non-IP protocols. Some adaptors may capture received packets, but ignore anything sent. 2. WinPcap (Windows Packet Library) device driver, needs to be installed (it installs two small DLLs and a driver), but captures all packets including non-IP. WinPcap may be downloaded from http://www.winpcap.org/, and version 4.0.2 is included in this package. Note the Delphi WinPcap pcap.pas and packet32.pas modules were originally written by Lars Peter Christiansen, but have several bug fixes and many new features. In theory WinPcap will run on Windows 9x, but it's not been tested. Use of the latest WinPcap version 4.0.2 9th November 2007 is strongly recommended, but the component also supports older versions 3.1 5th August 2005 and 3.0 10 February 2003. Komponenten-Übersicht: There are two main low level components, TMonitorSocket in monsock.pas which supports raw window sockets, and TMonitorPcap in monpcap.pas that supports WinPcap. Both have very similar properties and return ethernet packets using identical events, formatted identically, allowing the same application to use either or both low level components. There are subtle differences, raw sockets monitors a specific IP address, whereas WinPcap monitors all traffic on an adaptor. Both may potentially monitor traffic other than the local PC, depending on LAN structure. Common functions and declarations are in packhdrs.pas Praktikum Rechnernetze, Arbeitsbogen P1 Seite 6 / 14
2.2.1 Die Installation der Software-Komponenten Installieren Sie nach Delphi auch die besagte Magenta-Funktionsbibliothek (Internet Packet Monitoring Components) in ein beliebiges Arbeitsverzeichnis auf ihrem PC-System. Installieren Sie ergänzend in ein dazu lokales Unterverzeichnis (z.B. .\Vc32) auch die ebenfalls benötigte OverbyteICS-Bibliothek. Entpacken Sie dazu einfach die Datei „OverbyteIcsV7.zip“. Bezugsquellen: http://www.magsys.co.uk/delphi/magmonsock.asp http://www.overbyte.be/frame_index.html (hier ICS-V7 auswählen!) Ergänzen Sie anschließend in Delphi nur noch den Pfad zu ICS-Bibliothek im Such- bzw. Bibliothekspfad, passend für das gewählte Unterverzeichnis (z.B. „\Vc32“). Damit sollte Delphi nun auch diese Units bzw. Bibliotheksfunktionen finden können. Praktikum Rechnernetze, Arbeitsbogen P1 Seite 7 / 14
- Seite 1 und 2: Arbeitsbogen P1 Praktikum Rechnerne
- Seite 3 und 4: 1. Allgemeine Hinweise Die Zielsetz
- Seite 5: Für die Installation müssen Sie d
- Seite 9 und 10: TMonitorSocket needs WSocket from F
- Seite 11 und 12: 3. Alternative Aufgabenstellungen (
- Seite 13 und 14: 3.2 Realisierung einer Client-/Serv
2.2 Nutzung zusätzlicher Monitoring-Komponenten<br />
Unter <strong>der</strong> nachfolgenden Adresse finden Sie eine sehr praktische Komponentenbibliothek für<br />
das Netzwerk-Monitoring (u.a. Paketaufzeichnung) und zugehörige Beispielprogramme.<br />
Magenta Systems Internet Packet Monitoring Components v1.3<br />
Quelle: http://www.magsys.co.uk/delphi/magmonsock.asp<br />
Magenta Systems Internet Packet Monitoring Components are a set of Delphi components<br />
designed to capture and monitor internet packets using either raw sockets or the WinPcap<br />
device driver. Hardware permitting, ethernet packets may be captured and interpreted, and<br />
statistics maintained about the traffic. Uses of packet monitoring include totalling internet<br />
traffic by IP address and service, monitoring external or internal IP addresses and services<br />
accessed, network diagnostics, and many other applications. The component includes two<br />
demonstration applications, one that displays raw packets, the other that totals internet traffic.<br />
The components include various filters to reduce the number of packets that need to be<br />
processed, by allowing specific IP addresses to be ignored, LAN mask to ignore local traffic,<br />
and ignore non-IP traffic such as ARP.<br />
The components capture packets using two different techniques, with differing benefits<br />
and features:<br />
1. Raw sockets which are available with Windows 2000 and later. This uses WSocket V6<br />
from the François Piette internet component suite, from http://www.overbyte.be/.<br />
Major benefit is that no other software needs to be installed, but raw sockets don't<br />
seem to work fully with some network adaptors, and ignore non-IP protocols. Some<br />
adaptors may capture received packets, but ignore anything sent.<br />
2. WinPcap (Windows Packet Library) device driver, needs to be installed (it installs two<br />
small DLLs and a driver), but captures all packets including non-IP. WinPcap may be<br />
downloaded from http://www.winpcap.org/, and version 4.0.2 is included in this<br />
package. Note the Delphi WinPcap pcap.pas and packet32.pas modules were<br />
originally written by Lars Peter Christiansen, but have several bug fixes and many<br />
new features. In theory WinPcap will run on Windows 9x, but it's not been tested. Use<br />
of the latest WinPcap version 4.0.2 9th November 2007 is strongly recommended, but<br />
the component also supports ol<strong>der</strong> versions 3.1 5th August 2005 and 3.0 10 February<br />
2003.<br />
Komponenten-Übersicht:<br />
There are two main low level components, TMonitorSocket in monsock.pas which supports<br />
raw window sockets, and TMonitorPcap in monpcap.pas that supports WinPcap.<br />
Both have very similar properties and return ethernet packets using identical events, formatted<br />
identically, allowing the same application to use either or both low level components.<br />
There are subtle differences, raw sockets monitors a specific IP address, whereas WinPcap<br />
monitors all traffic on an adaptor. Both may potentially monitor traffic other than the local<br />
PC, depending on LAN structure. Common functions and declarations are in packhdrs.pas<br />
Praktikum Rechnernetze, Arbeitsbogen P1 Seite 6 / 14
Change language