For the networking people, this may come in handy if you need something mightier than tcpdump(1) on a remote location to have a look at packets.


It's inspired by the well known Wireshark, but for your terminal.

@MacLemon A similarly useful tool is Wireshark's sshdump: You can run the Wireshark GUI locally, pick the SSH capturer, configure host, whether to use sudo there and any prefiltering (with defaults that exclude the SSH wrapped traffic), and off you go.

Wait... sshdump? Why did I always manually run tcpdump on the remote machine, let it write to a file and then scp the pcap file to my local machine to open it with Wireshark?

Sign in to participate in the conversation – a Fediverse instance for & by the Chaos community