Unknown traffic in WFilter
Posted: Fri Aug 30, 2013 2:20 am
My customers see protocol unknown has use too much and they want to know protocol name in protocol unknown. Please list the protocol name that it likely to be most?
There are thousands of possibilities can cause unknown traffic.
Please follow be steps to create a packet dump:
1. In "Online computer", choose "Active Connections".
2. Click "Unknown", you will see a list of all ip address with unknown traffic.
3. Choose a test ip address, click the bandwidth number. You will see a list of "unknown" connections.
4. Run "wireshark" in WFilter server to capture packets of the test ip address, filtering with ip address and the port of unknown connection.
Send me the packet dump file to support@imfirewall.us, we will let you know what's it.