[ale] Wireshark newbie-Q: Promiscous capture
Mills John M-NPHW64
Jmills at motorola.com
Tue Apr 28 18:04:11 EDT 2009
ALErs -
I want to capture all [wired] traffic to or from certain IPs (or MACs if preferred) on a Linux host attached to a desktop hub through which all the traffic of interest is passing.
I set capture into 'promiscous' mode and filter on the stations I want to see, but only display packets that would normally be read by my wireshark host: broadcast, etc. I run wireshark from a console in which I have become 'su'.
What must I do to see on host 'A' all the traffic going between hosts 'B' and 'C'? Are there some switches that must be used when building wireshark, or other constraints on how it is run?
Thanks for any guidance.
- Mills
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.ale.org/pipermail/ale/attachments/20090428/35db9e2b/attachment.html
More information about the Ale
mailing list