On Wed, 2008-01-16 at 13:18 -0800, Al Sparks wrote: > Can I sniff the packets on the remote w/o a full install of ethereal? Typically something like this: tcpdump -s 1500 -i eth0 -w traffic.dmp will do the trick. Then pull the file back to the machine with ethereal and open it there. --Chris