Omnipeek23.3.1 Release NotesDownload PDF
Omnipeek 23.3.1 : Known Issues
Known Issues
A new ACL was added to control the ability to perform forensic searches, and this ACL is disabled by default (cannot perform forensic searches) for all users, including the Admin user. If you are using ACLs, be sure to enable the ACL that allows access to perform forensic searches for all users, including the Admin user, that require this access.
If a filter was created using an application with a previous version, the filter won't be converted to use new application IDs and will have to be recreated.
Those wanting to use RSA SecurID for authentication should choose RADIUS authentication in Omnipeek, and then enable their RSA authentication server’s RADIUS option.
When attempting to save all packets of a large packet file that displays numerous decode columns, it may take several hours to complete.
Filtering when opening a capture file does not work with encrypted files (such as those created by ORA) since Omnipeek has no means of filtering them before they are decrypted and opened.
Application classification is done with entire packet contents before slicing is applied when saving packets, so when the file is reloaded the entire packet is no longer present which may result in different (or no) application classification. (
Application classification may return different results if all the packets that make up a flow are not present, in particular the TCP handshake packets.
Cisco and Aruba access points may report incorrect signal and noise percent values in Omnipeek.
In a tcpdump capture, if no packets are filtered and you stop the capture on some remote systems (e.g., Mac OS and Debian Linux), the remote tcpdump processes might not shut down. You may need to SSH into the remote system and shut down the tcpdump processes manually.
If the installer launches Omnipeek for you, it is not possible to open a file by double-clicking or 'dragging and dropping' it in Omnipeek.