NetMaster

  • 1.  CA Netmaster Smartrace - ConnectDirect Secure+ dissector

    Posted Oct 16, 2017 08:31 AM

    Can CA Netmaster break out the ConnectDirect Secure+ TLS exchange like it does for HTTP(S)?



  • 2.  Re: CA Netmaster Smartrace - ConnectDirect Secure+ dissector

    Posted Oct 17, 2017 08:02 PM

    Hi Mark,

     

    Smartrace will recognise SSL/TLS protocols and provide some formatting such as for CLIENT HELLO etc. See example below. I hope this answers your question.

     

    Cheers Jon

     

    Summary Information                                                 
    Syn     Win=8192 Seq=693337776 MaxSeg=1460 WScale=8 Sack-P          
    Ack Syn Win=65535 Seq=70854684 Ack=693337777 MaxSeg=1460 WScale=5   
    Ack     Win=256 Seq=693337777 Ack=70854685                          
    TLS1: HSHK( CLIENT_HELLO )                                          
    Ack     Win=16378 Seq=70854685 Ack=693337948                        
    TLS1.2: HSHK( SERVER_HELLO CERTIFICATE...                           
    Ack     Win=256 Seq=693337948 Ack=70857605                          
    Ack Psh Win=16378 Seq=70857605 Ack=693337948                        
    Ack     Win=251 Seq=693337948 Ack=70858925                          
    TLS1.2: HSHK( CLIENT_KEY_EXCHANGE ) CHANGE_CIPHER HSHK( Encrypted )
    Ack Psh Win=16373 Seq=70858925 Ack=693338290                        
    TLS1.2: CHANGE_CIPHER                                               
    TLS1.2: HSHK( Encrypted )                                           
    TLS1.2: APPLICATION_DATA                                            
    Ack     Win=251 Seq=693338290 Ack=70859000                          
    TLS1.2: APPLICATION_DATA                                            
    TLS1.2: APPLICATION_DATA                                            
    TLS1.2: APPLICATION_DATA                                            
    TLS1.2: APPLICATION_DATA                                            
    TLS1.2: APPLICATION_DATA                                            
    TLS1.2: APPLICATION_DATA                                           



  • 3.  Re: CA Netmaster Smartrace - ConnectDirect Secure+ dissector

    Posted Oct 18, 2017 07:01 AM

    I know it can do this for HTTPS and TN3270, but I don't see where It can do this for Connect:Direct FMH68 exchanges. That is a different protocol. 



  • 4.  Re: CA Netmaster Smartrace - ConnectDirect Secure+ dissector

    Posted Oct 18, 2017 07:15 PM

    I didn't find much in the way of documentation. The best I could find was this explanation of the flows. See IBM URL below. It suggests that the FMH68 is a 'bind' of some sort. 

     

    Have you ever wondered what those FMH messages mean in your Stats? (CSE-Sterling Managed File Transfer) 



  • 5.  Re: CA Netmaster Smartrace - ConnectDirect Secure+ dissector

    Posted Oct 19, 2017 08:24 PM

    Hi Mark,

     

    Just to clarify, there is no support for this IBM proprietary protocol. You can use the Ideas forum to suggest a product enhancement.

     

    Regards Jon 



  • 6.  Re: CA Netmaster Smartrace - ConnectDirect Secure+ dissector

    Posted Oct 20, 2017 10:28 AM

    Oh maybe I posted this in the wrong place, that was my intention. I know that the Netmaster file transfer product can monitor C:D transmissions so maybe CA has that code handy.

     

     

     

     

    Sent from my iPhone



  • 7.  Re: CA Netmaster Smartrace - ConnectDirect Secure+ dissector

    Broadcom Employee
    Posted Oct 20, 2017 10:38 AM

    Hi Mark,

     

    The NetMaster for File Transfer product does not have the capabilities to dissect and format the data flows for the various file transfer products it supports. It's primary purpose is to make sure file transfers start, stop on time, catch errors and other things like file transfer sizes. It never actually sees the data flowing over the wire.

     

    Thanks,

    Steve