Re: [CentOS] Capturing Packets -- Ethereal

2008-01-17 Thread Milton Calnek
Chris Boyd wrote: On Wed, 2008-01-16 at 15:31 -0800, Al Sparks wrote: From: Milton Calnek <[EMAIL PROTECTED]> To: CentOS mailing list Sent: Wednesday, January 16, 2008 12:50:47 PM Subject: Re: [CentOS] Capturing Packets -- Ethereal The thing to do is to install wireshark on the

Re: [CentOS] Capturing Packets -- Ethereal

2008-01-16 Thread Chris Boyd
On Wed, 2008-01-16 at 15:31 -0800, Al Sparks wrote: > > > From: Milton Calnek <[EMAIL PROTECTED]> > > To: CentOS mailing list > > Sent: Wednesday, January 16, 2008 12:50:47 PM > > Subject: Re: [CentOS] Capturing Packets -- Ethereal > > > > The thin

Re: [CentOS] Capturing Packets -- Ethereal

2008-01-16 Thread Chris Boyd
On Wed, 2008-01-16 at 13:18 -0800, Al Sparks wrote: > Can I sniff the packets on the remote w/o a full install of ethereal? Typically something like this: tcpdump -s 1500 -i eth0 -w traffic.dmp will do the trick. Then pull the file back to the machine with ethereal and open it there. --Chris

Re: [CentOS] Capturing Packets -- Ethereal

2008-01-16 Thread Les Mikesell
Al Sparks wrote: From: Milton Calnek <[EMAIL PROTECTED]> To: CentOS mailing list Sent: Wednesday, January 16, 2008 12:50:47 PM Subject: Re: [CentOS] Capturing Packets -- Ethereal The thing to do is to install wireshark on the system without X. Then from a machine with X: ssh -Xf

Re: [CentOS] Capturing Packets -- Ethereal

2008-01-16 Thread Al Sparks
> > From: Milton Calnek <[EMAIL PROTECTED]> > To: CentOS mailing list > Sent: Wednesday, January 16, 2008 12:50:47 PM > Subject: Re: [CentOS] Capturing Packets -- Ethereal > > The thing to do is to install wireshark on the system without X. > > Then from a

Re: [CentOS] Capturing Packets -- Ethereal

2008-01-16 Thread Milton Calnek
The thing to do is to install wireshark on the system without X. Then from a machine with X: ssh -Xf [EMAIL PROTECTED] wireshark Al Sparks wrote: This may be off topic, but I think my ethereal question might be simple enough. I am presently compiling ethereal on a CentOS platform to check it o

Re: [CentOS] Capturing Packets -- Ethereal

2008-01-16 Thread Jason
yup. use tcpdump on the remote machine to create a pcap file like so tcpdump -i eth0 -n -s0 -w file.cap then just copy that file over and read it with ethereal. Al Sparks wrote: > This may be off topic, but I think my ethereal question might be simple > enough. > > I am presently compiling e

Re: [CentOS] Capturing Packets -- Ethereal

2008-01-16 Thread Barry Brimer
Quoting Al Sparks <[EMAIL PROTECTED]>: > This may be off topic, but I think my ethereal question might be simple > enough. > > I am presently compiling ethereal on a CentOS platform to check it out. > > But the packets I want to monitor are actually on a different CentOS > platform, and I'd rather

[CentOS] Capturing Packets -- Ethereal

2008-01-16 Thread Al Sparks
This may be off topic, but I think my ethereal question might be simple enough. I am presently compiling ethereal on a CentOS platform to check it out. But the packets I want to monitor are actually on a different CentOS platform, and I'd rather not install Ethereal on it, if for no other reason