How to use Wireshark in live mode via SSHFS

I have a remote machine that I run experiments on. On this machine, I want to sniff the packets sent and received. On the machine in front of me, I want to open Wireshark and see the packets live.

The only way I have to access the remote machine is SSH.

What do I do?

Answers


  1. Establish an SSH-mount using SSHFS.
  2. Make sure that stdbuf is available (using homebrew on OS X or Cygwin on Windows).
  3. Start capturing on the remote machine using

    stdbuf -o0 sudo ibdump -s -o - > sniffer.pcap

  4. Run Wireshark on the client

    stdbuf -o0 tail -c +0 -F /sshfsmount/sniffer.pcap | ./Wireshark.exe -k -i -


Need Your Help

DropDownList after postback all values/index lost

asp.net vb.net asp.net-2.0

I'm running into a little problem with a gridview and a dropdownlist. I can get the dropdownlist to load initially, but when it autopostback's it returns with no value. I am populating the dropdown...

How to convert from varbinary to char/varchar in mysql

sql mysql

I have a field which is varbinary. It has already been populated. Now how do i convert varbinary to varchar so that I can use the data in the field for some other purpose. I use a MySQL version 5.10