Kismet Wireless

Kismet Forums

 

Posted by:mrgriscom
Subject:Kismet captures no packets! HELP!!
Date:03:33:16 22/01/2008

Hi, I am having problems getting Kismet to work on my laptop. I feel like I have everything set up correctly (finally), but I capture zero packets at all.

My skill level: I've been using Linux for years and am pretty good at it, but my sysadmin skills are kinda rusty.

My setup:
Computer: Toshiba Satellite A135
OS: Ubuntu 7.10 Gutsy Gibbon
Wireless card: Atheros AR5006EG (as identified by 'lspci')
Kismet version: 2007.01.R1

I'm pretty sure I'm using the madwifi-ng driver (I don't know what version). lsmod shows 'ath_hal' and 'ath_pci'.

I installed kismet through apt.
I added the following to kismet.conf:
source=madwifi_g,wifi0,Atheros AR5006EG [802.11b/g]

The base wireless device is 'wifi0'. Ubuntu sets up a VAP of 'ath0' by default, which kismet was giving me warnings about, so now I kill it prior to starting.

Commands I execute:
sudo wlanconfig ath0 destroy (remove VAP)
sudo kismet
[after quitting kismet]
sudo wlanconfig ath0 create wlandev wifi0 wlanmode sta (recreate ath0 so i can get back on the network)
sudo /etc/init.d/networking restart

Command line output for kismet:
Server options: none
Client options: none
Starting server...
Waiting for server to start before starting UI...
Suid priv-dropping disabled. This may not be secure.
No specific sources given to be enabled, all will be enabled.
Enabling channel hopping.
Enabling channel splitting.
Source 0 (Atheros AR5006EG [802.11b/g]): Enabling monitor mode for madwifi_g source interface wifi0 channel 6...
NOTICE: Created Madwifi-NG RFMON VAP kis0
WARNING: wifi0 appears to be using Madwifi-NG. Some versions of the Madwifi-NG drivers have problems in monitor mode, especially if non-monitor VAPs are active. If you experience problems, be sure to try the latest versions of Madwifi-NG and remove other VAPs
Source 0 (Atheros AR5006EG [802.11b/g]): Opening madwifi_g source interface kis0...
Allowing clients to fetch WEP keys.
WARNING: Disabling GPS logging.
Logging networks to /var/log/kismet/Kismet-Jan-21-2008-1.network
Logging networks in CSV format to /var/log/kismet/Kismet-Jan-21-2008-1.csv
Logging networks in XML format to /var/log/kismet/Kismet-Jan-21-2008-1.xml
Logging cryptographically weak packets to /var/log/kismet/Kismet-Jan-21-2008-1.weak
Logging cisco product information to /var/log/kismet/Kismet-Jan-21-2008-1.cisco
Logging data to /var/log/kismet/Kismet-Jan-21-2008-1.dump
Writing data files to disk every 300 seconds.
Mangling encrypted and fuzzy data packets.
Tracking probe responses and associating probe networks.
Reading AP manufacturer data and defaults from //etc/kismet/ap_manuf
Reading client manufacturer data and defaults from //etc/kismet/client_manuf
Using network-classifier based data encryption detection
Dump file format: wiretap (local code) dump
Crypt file format: airsnort (weak packet) dump
Kismet 2007.01.R1 (Kismet)
Logging data networks CSV XML weak cisco
Listening on port 2501.
Allowing connections from 127.0.0.1/255.255.255.255
Registering builtin client/server protocols...
Registering requested alerts...
Registering builtin timer events...
Gathering packets...
Starting UI...
Looking for startup info from localhost:2501.... found.
Connected to Kismet server 2007.01.R1 on localhost:2501
Reading AP manufacturer data and defaults from //etc/kismet/ap_manuf
Reading client manufacturer data and defaults from //etc/kismet/client_manuf
[kill gui]
Killing server...
Didn't detect any networks, unlinking network list.
Didn't detect any networks, unlinking CSV network list.
Didn't detect any networks, unlinking XML network list.
Didn't detect any Cisco Discovery Packets, unlinking cisco dump
wait: 86: No previous job
Kismet exited.
Didn't capture any packets, unlinking dump file
Didn't see any weak encryption packets, unlinking weak file
Kismet exiting.

This is the output of ifconfig and iwconfig while kismet is running:
drew@capsize:~$ ifconfig
eth0 Link encap:Ethernet HWaddr 00:16:D4:97:56:89
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
Interrupt:17 Base address:0xc000

kis0 Link encap:UNSPEC HWaddr 00-16-E3-C4-B6-67-00-C0-00-00-00-00-00-00-00-00
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:1906 errors:0 dropped:0 overruns:0 frame:0
TX packets:1906 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:237493 (231.9 KB) TX bytes:237493 (231.9 KB)

wifi0 Link encap:UNSPEC HWaddr 00-16-E3-C4-B6-67-00-00-00-00-00-00-00-00-00-00
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2802377 errors:0 dropped:56068 overruns:0 frame:155881
TX packets:560755 errors:1 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:199
RX bytes:1010723738 (963.9 MB) TX bytes:96607632 (92.1 MB)
Interrupt:20

drew@capsize:~$ iwconfig
lo no wireless extensions.

eth0 no wireless extensions.

wifi0 no wireless extensions.

kis0 IEEE 802.11g ESSID:"" Nickname:""
Mode:Monitor Frequency:2.437 GHz Access Point: Not-Associated
Bit Rate:0 kb/s Tx-Power:17 dBm Sensitivity=1/1
Retry:off RTS thr:off Fragment thr:off
Power Management:off
Link Quality=0/70 Signal level=-95 dBm Noise level=-95 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:0 Missed beacon:0

and this is the output when kismet is not running:
drew@capsize:~$ ifconfig
ath0 Link encap:Ethernet HWaddr 00:16:E3:C4:B6:67
inet addr:192.168.1.66 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::216:e3ff:fec4:b667/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:483 errors:0 dropped:0 overruns:0 frame:0
TX packets:42 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:463795 (452.9 KB) TX bytes:5041 (4.9 KB)

eth0 Link encap:Ethernet HWaddr 00:16:D4:97:56:89
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
Interrupt:17 Base address:0xc000

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:2039 errors:0 dropped:0 overruns:0 frame:0
TX packets:2039 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:253392 (247.4 KB) TX bytes:253392 (247.4 KB)

wifi0 Link encap:UNSPEC HWaddr 00-16-E3-C4-B6-67-00-00-00-00-00-00-00-00-00-00
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2814236 errors:0 dropped:56971 overruns:0 frame:156223
TX packets:560857 errors:1 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:199
RX bytes:1011496484 (964.6 MB) TX bytes:96616553 (92.1 MB)
Interrupt:20

drew@capsize:~$ iwconfig
lo no wireless extensions.

eth0 no wireless extensions.

wifi0 no wireless extensions.

ath0 IEEE 802.11g ESSID:"2WIRE119" Nickname:""
Mode:Managed Frequency:2.412 GHz Access Point: 00:19:E4:0E:41:79
Bit Rate:48 Mb/s Tx-Power:17 dBm Sensitivity=1/1
Retry:off RTS thr:off Fragment thr:off
Power Management:off
Link Quality=65/70 Signal level=-28 dBm Noise level=-93 dBm
Rx invalid nwid:530 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:0 Missed beacon:0

drew@capsize:~$ iwlist ath0 scan
ath0 Scan completed :
Cell 01 - Address: 00:19:E4:0E:41:79
ESSID:"2WIRE119"
Mode:Master
Frequency:2.412 GHz (Channel 1)
Quality=66/70 Signal level=-29 dBm Noise level=-95 dBm
Encryption key:on
Bit Rates:1 Mb/s; 2 Mb/s; 5.5 Mb/s; 6 Mb/s; 9 Mb/s
11 Mb/s; 12 Mb/s; 18 Mb/s; 24 Mb/s; 36 Mb/s
48 Mb/s; 54 Mb/s
Extra:bcn_int=100
Cell 02 - Address: 00:12:88:2C:68:B9
ESSID:"2WIRE880"
Mode:Master
Frequency:2.437 GHz (Channel 6)
Quality=20/70 Signal level=-75 dBm Noise level=-95 dBm
Encryption key:on
Bit Rates:1 Mb/s; 2 Mb/s; 5.5 Mb/s; 11 Mb/s; 22 Mb/s
6 Mb/s; 9 Mb/s; 12 Mb/s; 18 Mb/s; 24 Mb/s
36 Mb/s; 48 Mb/s; 54 Mb/s
Extra:bcn_int=100
Cell 03 - Address: 00:14:95:80:FF:19
ESSID:"2WIRE968"
Mode:Master
Frequency:2.437 GHz (Channel 6)
Quality=3/70 Signal level=-92 dBm Noise level=-95 dBm
Encryption key:on
Bit Rates:1 Mb/s; 2 Mb/s; 5.5 Mb/s; 11 Mb/s; 6 Mb/s
9 Mb/s; 12 Mb/s; 18 Mb/s; 24 Mb/s; 36 Mb/s
48 Mb/s; 54 Mb/s
Extra:bcn_int=100


There are wireless networks in range and packets flying... but I can't see any at all. Any ideas?

Thanks


Reply to this message