OmniPeek Enterprise Support FAQs

OmniPeek Enterprise

Return to top of page What are the new features in OmniPeek Enterprise 8.1?

Support for Omnipliance WiFi
64-bit version
TCPDump Remote Adapter support in OmniPeek
New wireless graphs in Forensics view (only for Omnipliance WiFi)
Real-time and post-capture wireless decryption in OmniEngine (only for Omnipliance WiFi)
Compass enhancements
New decoders

Return to top of page What is an Omnipliance WIFI?

Go to the link below to get full details at:

Return to top of page -What is the new TCPDump Remote Adapter in OmniPeek Enterprise 8.1 Capture Options dialog?

It was a downloadable plug-in but now we have integrated it with OmniPeek 8.1. The Remote TCPDump Adapter is a plug-in for the OmniPeek Console that connects to remote machines through SSH and runs TCPDump.

Return to top of page -What happened to the Cisco and Aruba remote adapters in the Capture Options dialog?

OmniPeek now provides a single remote adapter to replace the individual ones called “Access Point Capture Adapter”.

Return to top of page What new way does Compass display Data Rates statistics in OmniPeek 8.1?

Compass now displays "Data Rates" statistics chart window for grouping statistics by data rates for wireless traffic.

Return to top of page What new ways does Compass generate statistics in OmniPeek 8.1?

From file(s) in the Compass Workspace navigation bar and by creating projects from one or more packet files in the Compass Workspace mode.

Return to top of page What is the new VLAN-MPLS Advanced Filter Node?

This is an advanced filter node which you will be able to specify one or more VLAN IDs or ID ranges. Also, you will be able to specify one or more MPLS Labels or Label ranges.

Return to top of page Do the built in Cisco and Aruba remote adapters capture 802.11ac traffic?

Yes, the Cisco and Aruba Remote Adapters now have the capabilities of capturing 802.11ac traffic.

Return to top of page What are the supported Cisco and Aruba 802.11ac AP’s that are supported in OmniPeek 8.1?

The supported AP’s are the Cisco 2700, 3700 and Aruba 225 models.

Return to top of page Do the Cisco and Aruba AP’s support multi-stream 802.11ac configuration?

Yes, they support MIMO: 1, 2, and 3 spatial stream configurations.

Return to top of page Do these 802.11ac AP’s require WLAN controllers?

Yes, for Cisco the AIR-CT2504-K9 V01. It needs at least the following firmware version: v7.6.1.116. For the Aruba, it requires the Aruba 7200 series controller with version 6.4 or greater of the firmware.

Return to top of page Can OmniPeek 8.1 read pcap and pcapng files with PPI (Per Packet Information) headers?

Yes, OmniPeek 8.1 can read pcap and pcapng files with PPI headers.

Return to top of page On OmniPeek 8.1 Tools menu, what task does the new, "Merge Packet Files" option accomplish?

The Merge Packet Files feature allows you to merge multiple packet files into one. Keep in mind, they all must be the same media type (e.g., Ethernet and Wireless).

Return to top of page What file formats can I merge together and what formats can I save them as?

The inserted and destination files must be of a supported WildPackets packet file format (*.pkt, *.wpz).

Return to top of page What is the Remote PCap feature in OmniPeek 8.1?

You can create RPCap interfaces that allow you to capture 802.11 wireless traffic (including 802.11ac), within OmniPeek from an Access Point which supports RPCap. In OmniPeek you can create and select RPCap interfaces from within the Aggregator Settings dialog.

Return to top of page Can OmniPeek 8.1 display the Modulation Coding Scheme (MCS) and the number of Spatial Streams?

Yes, OmniPeek has the ability to display the information such as MCS index and the number of spatial streams. They will be displayed in the packet list view and the packet decode view.

Return to top of page Why is the Aggregator named “Aggregator/Roaming”?

This is because the Roaming Latency feature has been added to the wireless aggregator.

Return to top of page OmniPeek supports Multiple IP Addresses and/or IP Address Range Filters, how do I create one?

  • Click on the View Filters icon.
  • Click on the Insert Filter icon.
  • Select the Type as Advanced.
  • Go to the And/Or option and select Address.
  • Select the Multiple tab and began to enter your Addresses.

Return to top of page How do you use the new searchable log options in OmniPeek?

  • Go to the Logs view of an OmniPeek capture window.
  • Click on the Clock icon next to the Search field.
  • Select the date and time range.
  • Click OK.

Return to top of page What type of Graphing Enhancements do you have in OmniPeek?

  • Easier to see which graph data points correspond to what dates/times.
  • Hovering over a data point on a graph displays a tooltip showing the value(s) corresponding to that data point. This tooltip will also include the date/time of that data point.
  • Tickmarks on the corresponding label will be easier to make it more visually apparent that the tickmark corresponds to a label.
  • More labels will be shorter so that more labels can fit on the screen at once.

Return to top of page What is the Multi-Segment Analysis (MSA) feature in OmniPeek?

It allows you to quickly and easily locate, visualize, and analyze one or more flows as they traverse several capture points on your network from end-to-end.

Return to top of page I have zoomed into millisecond mode using Compass, but why do I not see anything in the network utilization graphs?

Bar graphs are difficult to see in millisecond mode since there are many points to display in such a small area. The resolution would be to change the graph type to something other than bar graph.

Return to top of page Why is the time duration shown in the Compass network utilization window different from the OmniPeek time duration?

The time duration shown in Compass represents the number of points in the graph, while OmniPeek's time duration is strictly based upon the difference in time between the first and last captured packet timestamps.

Return to top of page What is the difference between the Peek Split and the Compass Plug-In for opening up large files in OmniPeek?

The pull down menu Peek Split can take large .pkt file and split them into smaller .pkt files. For example, it is good when you are opening a 1GB file and splitting it up into four files. With Compass you can open many large files into 1 Database file and view an interactive dashboard for forensics of large quantities of wired and wireless network traffic. Compass employs an intuitive interactive graph, allowing you to visualize and interact with utilization statistics from large quantities of network data, before actually loading a specific time range of packets.

Return to top of page Does OmniPeek support .pcapng files?

Yes, you can now open .pcapng files in OmniPeek. It is the next generation PCAP dump file format.

Return to top of page What are some of the Advanced Filters UI Enhancements?

  1. Cut, copy, and paste using commands from the context menu.
  2. Swap And/Or values of different filter elements. The And/Or designations are also now shown in the Advanced Filter View.
  3. The ability to add comments to individual filter elements.

Return to top of page Can I now actually edit an OmniEngine rather than having to delete it and recreate a new one?

Yes, in OmniPeek Engines view you can right-click on an Engine and edit its properties and save them.

Return to top of page Why am I unable to see my Captured Packets in my Capture Window?

The most common issue is when you selected Capture to Disk in the General Options you would have seen a menu pop up screen called "Performance Warning after clicking OK. If you select "Optimize for Capture to Disk" it will disable all your Analysis Options for Real-Time viewing. This is because this method of analyzing is normally used for Post Capture Forensic Analysis.

Return to top of page What if I want to view the Options in Real-Time while Capturing To Disk?

If you wish to view the Options in Real-Time, you will need to go back into the Capture Options->Analysis Options and enable the ones you want to view or all of them. Once you have selected the Options you want to view the "Performance Warning" will pop up again after you click OK. Please chose "Continue with current settings" so it will keep the Options you configured enabled.

Return to top of page What is the Network Dashboard drill-down feature?

Now you can select a time range in the Network Dashboard in OmniPeek and view the packets associated with that selection.

MyPeek Product Portal
Manage your products, get plug-ins, and much more.
Login to MyPeek
WildPackets Training
Register now for upcoming courses and get network and protocol analysis training.

Register for courses

WildPackets Forums
Join in the discussion forum for WildPackets products and general networking issues.

Visit the forum