[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] Wireshark newbie-Q: Promiscous capture

Subject: [ale] Wireshark newbie-Q: Promiscous capture
From: Jmills at motorola.com (Mills John M-NPHW64)
Date: Tue, 28 Apr 2009 18:04:11 -0400

ALErs -

I want to capture all [wired] traffic to or from  certain IPs (or MACs if preferred) on a Linux host attached to a desktop hub through which all the traffic of interest is passing.

I set capture into 'promiscous' mode and filter on the stations I want to see, but only display packets that would normally be read by my wireshark host: broadcast, etc. I run wireshark from a console in which I have become 'su'.

What must I do to see on host 'A' all the traffic going between hosts 'B' and 'C'? Are there some switches that must be used when building wireshark, or other constraints on how it is run?

Thanks for any guidance.

 - Mills
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.ale.org/pipermail/ale/attachments/20090428/35db9e2b/attachment.html

Follow-Ups:
- [ale] Wireshark newbie-Q: Promiscous capture
  - From: ale at cogginsnet.com (Robert Coggins)

Prev by Date: [ale] Ale Digest, Vol 15, Issue 89
Next by Date: [ale] Wireshark newbie-Q: Promiscous capture
Previous by thread: [ale] Physical to Xen Server
Next by thread: [ale] Wireshark newbie-Q: Promiscous capture
Index(es):
- Date
- Thread