[PLUG] Wireshark help

William A Morita wamorita at hevanet.com
Fri Oct 31 22:08:59 UTC 2008


Vincent,

If you are plugged into a switch, you are wasting your time.
(Unless your switch is one with either a special port or specially
configurable)
If you have your network on a hub, you will be able to see the LAN traffic. 

- Bill Morita
wamorita at hevanet.com 


-----Original Message-----
From: plug-bounces at lists.pdxlinux.org
[mailto:plug-bounces at lists.pdxlinux.org] On Behalf Of VY
Sent: Friday, October 31, 2008 10:57 AM
To: plug at lists.pdxlinux.org
Subject: [PLUG] Wireshark help

Hi:

I have launched wireshark on my Linux box and trying to capture and analyze
network traffic.
What I want is not to analyze the Linux box to/from network traffic but
analyze other box(es) on the network and their traffic to/from the outside
world as well as to/from the linux box.

So far, all I could capture is to/from the Linux host to/from any boxes on
my network but fail to capture any traffic out of other boxes to other
hosts.

Does anyone know the right filter rules for doing that?
A few years ago, i was able to do that with ettercap when Wireshark was
still known as Ethereal but things have been re-arranged and I don't see to
find the docs for describing that.

Thanks

--Vincent
_______________________________________________
PLUG mailing list
PLUG at lists.pdxlinux.org
http://lists.pdxlinux.org/mailman/listinfo/plug






More information about the PLUG mailing list