Use wireshark remotelly on another host and the UI locally

From PedrosBrainDump
Revision as of 14:41, 4 February 2025 by 413vhcu1lq0463ob (talk | contribs) (Created page with "to use wireshark remotelly and the UI locally first you need to have wireshark installed and then create a command (bin/rwireshark) with this content: <nowiki>#</nowiki>!/bin/bash HOST=$1 shift TCPDUMP_ARGS=$@ wireshark -i <(ssh "$HOST" sudo tcpdump -s 0 -U -n -w - $TCPDUMP_ARGS) to use basically you can do the following: rwireshark [hostname/ip] [other tcpdump parameters]")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

to use wireshark remotelly and the UI locally first you need to have wireshark installed and then create a command (bin/rwireshark) with this content: 

#!/bin/bash
HOST=$1
shift
TCPDUMP_ARGS=$@
wireshark -i <(ssh "$HOST" sudo tcpdump -s 0 -U -n -w - $TCPDUMP_ARGS)

to use basically you can do the following: 

rwireshark [hostname/ip] [other tcpdump parameters]
Retrieved from "https://wiki.pedromussato.com/index.php?title=Use_wireshark_remotelly_on_another_host_and_the_UI_locally&oldid=249"