Capturing traffic

scuzzo84 · Nov 8, 2005, 9:18 PM

Say someone is chatting with AIM w/o encryption or browsing the net on the network and I have pfsense set up, will I be able to capture packets or traffic and be able to read these clear text convos or pages this user is going to?

sullrich · Nov 8, 2005, 9:56 PM

@scuzzo84:

Say someone is chatting with AIM w/o encryption or browsing the net on the network and I have pfsense set up, will I be able to capture packets or traffic and be able to read these clear text convos or pages this user is going to?

From the console issue ( shell option 8 ):

pkg_add -r aimsniff

See http://www.aimsniff.com/documentation.html for usage instructions.

Also, DO NOT cross post to either our IRC or Mailing list. It really shows your impatience and it ends up in the developers reading stuff twice.

Cyrandir · Nov 9, 2005, 1:00 AM

Are there any plans to make this into a package with a frontend inside pfsense?

sullrich · Nov 9, 2005, 12:58 AM

@Cyrandir:

Are there any plans to make this into a package with a frontend?

Not at this time. Stuff like this is so trvial there is no reason to.

billm · Nov 9, 2005, 3:40 AM

@Cyrandir:

Are there any plans to make this into a package with a frontend inside pfsense?

No, this is a firewall, not an anti-privacy device.

–Bill

Cyrandir · Nov 9, 2005, 4:45 AM

All I can say is… LOL!

Nov 12, 2005, 5:10 PM

AIMsniff is also fairly limited and breaks almost everytime a new version of AIM comes out. Also, if you look at the code for AIMsniff you'll see why its not really a good idea to run it on a critical network asset like a firewall.