[clue-tech] Wireshark on Centos 5
David L. Anselmi
anselmi at anselmi.us
Thu Sep 2 18:48:50 MDT 2010
Clayton Fast wrote:
> I need to analyze network traffic from a specific public IP address to a
> production Centos 5 system but I'm concerned about running wireshark on that
> system. I've tried running it on a seperate PC on the network but it only
> reports its own traffic.
If you have a managed switch, use it to copy traffic to a sniffer machine.
If you don't put a hub in between the server and the gateway and sniff off that. When I've done
this, even though the hub was only 10baseT, the gateway was only 1.5Mbps so it didn't impact traffic
much.
Dave
More information about the clue-tech
mailing list