OmniEngine Enterprise

• How do I access the new CDR (Call Detail Records)?
• Will all OmniPeek Users Need Access to the OmniEngine Data Folder?
• Is OmniEngine Enterprise compatible with User Account Control (UAC) under Windows 7?
• Is there a way to only capture the header of a packet?
• Can a NIC connected to a SPAN/Mirror port also be used for network services?
• I created a filter but it is not showing up in the filter list. Why?
• Why does the Dashboard view display Traffic History and Top Talkers by IP Address as not available?
• Are there any tips to optimize performance?
• How do I optimize my OmniEngine to get the best performance possible?
• Will OmniEngine work with Windows Firewall enabled (Windows XP Professional and Windows 7)?

How do I access the new CDR (Call Detail Records)?

In the Capture Options Statictics Output, enable the "Save statistics report". Then under the "Report type" select the Call Detail Records option.

Will all OmniPeek Users Need Access to the OmniEngine Data Folder?

Yes, the data folder used by OmniEngine to store trace files must have write permissions for all users who want to use OmniPeek. The OmniEngine data folder is configured using the OmniEngine Manager (on the General tab of the Remote Engine Properties dialog).

Is OmniEngine Enterprise compatible with User Account Control (UAC) under Windows 7?

No, In order to run OmniEngine under Windows 7 you must disable UAC.

Is there a way to only capture the header of a packet?

Yes, here's how:

1. Click View/Filters to bring up the filters window.
2. Click the Insert button (Green )
3. Select Simple or Advanced for Filter Type.
4. Select Protocol Filter.
5. Select the Protocol and check Slice to Header.

Can a NIC connected to a SPAN/Mirror port also be used for network services?

No, you will need an additional adapter to use for network services or use a multi-port adapter like the Intel dual or quad port adapters. These cards could connect via one port and capture on the additional, available ports.

I created a filter but it is not showing up in the filter list. Why?

Be sure you have clicked the yellow bar "Click here to send changes".

Why does the Dashboard view display Traffic History and Top Talkers by IP Address as not available?

Be sure the modules are enabled. Start a new Monitoring Capture or New Capture -> Click the Performance View -> Traffic History and Top Talker Statistics should be checked.

Please also note that the Dashboard view is available only when Monitoring and Capturing. Forensic Captures by default have all Analysis Options unchecked.

Are there any tips to optimize performance?

In the Capture/Monitor Options, select Analysis Options. For peak performance, right click on one of the features and choose Disable All. This way, the OmniEngine will function at peak performance, but the features are still available when needed. When you need a particular feature, you can always enable it. As you enable/disable individual features, the Capture Performance bar at the bottom of the Analysis Options dialog will move to show you an estimate of the impact of each feature.

Here are a few more tips to improve the performance of the OmniEngine:

• Turn off scroll during capture. Control K will start/stop scroll.
• Disable passive name resolution. Under Tools/Options/Name Resolution, uncheck enable passive name resolution.
• Disable Statistics Output and Graphing.

How do I optimize my OmniEngine to get the best performance possible?

Please request the OmniEngine Best Practices document from Technical Support:

http://www.wildpackets.com/support/contact

Will OmniEngine work with Windows Firewall enabled (Windows XP Professional and Windows 7)?

You must either disable the Windows firewall, or add the OmniEngine TCP port to the exceptions list, in order to make an OmniEngine accessible.