ssh wireshark 远程抓包

2019独角兽企业重金招聘Python工程师标准>>> hot3.png

ssh wireshark 远程抓包,跟tcpdump结合是最方便的

ssh root@nav tcpdump -U -i ens32 -s0 -w - "not port 22" | wireshark -k -i -

找了好久,终于找到了

#1. tshark + wireshark+ssh
ssh root@host tcpdump -U -s0 -w - "not port 22" | wireshark -k -i -
#2. tcpdump + wireshark + ssh
ssh [email protected] 'tshark -f "port !22" -w -' | wireshark -k -i -
#3. fifo方式
mkfifo /tmp/fifo; ssh-keygen; ssh-copyid root@remotehostaddress; sudo ssh root@remotehost "tshark -i eth1 -f 'not tcp port 22' -w -" > /tmp/fifo &; sudo wireshark -k -i /tmp/fifo;

转载于:https://my.oschina.net/jianhui1980/blog/532678

你可能感兴趣的:(ssh wireshark 远程抓包)