[CentOS] Using Wireshark on CentOS without UI

Thu Apr 22 12:13:06 UTC 2010
Jatin Davey <jashokda at cisco.com>

Thanks Michel

I would explore more on the tshark usage. Thanks for the support.

Thanks
Jatin

On 4/22/2010 5:31 PM, Michel van Deventer wrote:
> Hi,
>
>    
>> Yesterday i had installed wireshark on my centos box which does not have
>> the GUI , It is actually a hardened box. I installed the tool using the
>> following command:
>>
>> yum install wireshark
>>
>> After installation i dont know how to proceed further in capturing the
>> packets. I basically want to capture packets and copy them onto my
>> windows box. On the windows box i can use the Wireshark UI to open the
>> pcap file to view its contents.
>>      
> Wireshark in cli mode is called tshark.
>
> With 'tshark -i eth0 -w outfile' captures all traffic on eth0 to outfile.
>
>        Regards,
>
>
>        Michel
>
>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
>