tags:

views:

165

answers:

3
Q: 

Capturing network traffic on Linux

Question: I have one Windows laptop, one Linux laptop and a wireless router.

Now I want to "investigate" the hotmail/windows live protocol. What I want to do is route network traffic from the windows laptop via ethernet to the linux laptop, capture it on the Linux computer, forward it wirelessly to the router, receive the hotmail response from the router on the linux computer and forward it to the windows computer.

How do I do that? In essence, switching the Linux laptop between the Windows laptop and the router, to capture network traffic ?

Which program is best for capturing/analysing ? Please note that for whatever reason, packet capturing with winpcap on the windows computer doesn't work...

+4  A: 

Of course you can do this, take a look at wireshark

BenZen  2010-05-13 17:18:48
+2  A: 

man tcpdump

On my Mac, I do it like this: sudo tcpdump -ien1 -s0 -xX -vvv

I don't know how similar tcpdump options are across platforms... Note, tcpdump also allows you to capture to a pcap file that could then be imported to Wireshark and maybe other gui tools.

Tommy Knowlton  2010-05-13 17:19:14
The options are exactly the same, except of course -ien1 which becomes -ieth1
Quandary  2010-05-14 16:26:13
+1  A: 

As others have mentioned, you can use wireshark (find out how to use filters to remove unnecessary packets in your log). If your Windows and Linux box are on the same network, you do not need that setup to sniff packets. Unless you are using ndiswrapper, you would probably be able to set the wireless network device on the Linux box to "monitor mode" and it will sniff all packets on your LAN. If your device does not support that mode, you can try connecting both boxes to your router physically. That will help you avoid the routing you described in your question.

Bandan  2010-05-13 17:48:00

related questions

grep a file, but show several surrounding lines?
VMWare Server Under Linux Secondary NIC connection
Should I move from C++ to Python? ... Or another language?
Globus Toolkit virtual machine
How to avoid redefining VERSION, PACKAGE, etc.
How do I setup Public-Key Authentication?
showing a message box from a bash script in linux
Best Linux Distro for Computer Repair
Mapping my custom keys in Debian
Any IcedTea war stories?
How do you find the age of a long-running Linux process?
Personal Linux web server
Programmatically talking to a Serial Port in OS X or Linux
what's in your .bashrc ?
Linux - files and scripts that execute on boot
Text Editor For Linux (Besides Vi)?
Lightweight IDE for Linux
Shell scripting input redirection oddities
XML Editing/Viewing Software
What should a longtime Windows user know when starting to use Linux?
Gtk SSH client for Linux?
Getting root permissions on a file inside of vi?
Is it possible to drag windows between workspaces when using Compiz?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?