TCPDUMP – Resolving Too Many Incorrect Checksum Errors in TCPDUMP

In Wireshark, go to Statistics->Conversations->TCP. Try eyeballing the list to see if anything looks odd, e.g. a host with an abnormally large number of connections, low bytes transferred, or a low transfer rate. If you really need to you can copy the data to a spreadsheet. (You can do something similar on the server side using netstat, e.g. on Linux you could run netstat -nt | sort -n -t . -k5,5 -k6,6 -k7,7 -k8,8 to list connections sorted by client IP address).

If the problem is limited to one or two clients, you can look at their traffic to try to narrow the problem down further.

(And if you really are using Ethereal, you should upgrade to Wireshark immediately. Disclosure: I'm the lead developer.)

In case somebody else is having the same problem, here is the solution: the adapter has to be configured manually by adding files /etc/sysconfig/network-scripts/ifcfg-eth0 and /etc/sysconfig/networking/profiles/default/ifcfg-eth0 after successful installation of LIS3.

The steps that worked for me:

• create virtual machine with both network adapter and legacy network adapter
• install CentOS 6 and Linux Integration Services 3.1
• create /etc/sysconfig/network-scripts/ifcfg-eth1 and /etc/sysconfig/networking/profiles/default/ifcfg-eth1 files
• reboot and check whether both network interfaces are up
• remove ifcft-eth0 and rename ifcfg-eth1 to ifcfg-eth0 at both places
• turn off, remove legacy adapter in hyper-v machine properties and turn on

The sources where I have found the most useful info:

• http://social.technet.microsoft.com/Forums/cs-CZ/linuxintegrationservices/thread/35d7fe50-e0bb-40b4-8ecc-37d211444ad9
• http://permalink.gmane.org/gmane.linux.redhat.fedora.general/392526
• http://www.cyberciti.biz/faq/rhel-centos-fedoracore-linux-network-card-configuration/