How I pakcet collect useing a switch
 

Here is How I pakcet collect.
Requiorments
one pc with linux
one pc with windows
router
Ethereal or the one that is used here it dose not matter
First thing first we are going to set up out linux box to be a router.
Here is how you do this
go to your terminal aka kernal type in
iptables --table nat --append POSTROUTING --out-interface eth0 -j MASQUERADE
iptables --append FORWARD --in-interface eth0 -j ACCEPT
echo 1 > /proc/sys/net/ipv4/ip_forward
once your done with this start your windows box. Go to Network Connections and change your ip to the linux boxs ip.
Then when your on the linux box start up eather real.
set your filter to
udp[0:2]-1200 < 500
then go play eq. The only problem that I have had with this is that it bouble nats the data packets.

You could always run whatever collecting tool you use on the same machine/OS as the one playing EQ.

I logged packets way back when, and had emailed them somewhere... I forget what happened to all of that, but it was so long ago.

Anyway... when I log packets, I personally use two machines... for me, it is easy... I have a wireless network, so I can just use a wireless monitoring program on my PDA or laptop or something and log packets... which is what I also do to see if anybody is accessing my network that shouldnt be... one month someone connected and downloaded about 50 gigs of porn lol

OT but why not just secure your wireless?

wireless (even encrypted) is much more crackable (no need to do arp poisoning). this is why most enterprises DMZ wireless and require VPN tunnels for these nodes to access internal network resources.

== sfisque

Yeah, but real security isn't that important to most of us running small home networks. A 'secure' wireless router is more than enough to keep your loser neighbors from stealing your bandwidth on their shiny new iphones.