Note to Self: tcpdump over ssh connection

Leave a reply

The scenario is that you’re connected to a remote machine via ssh and you want to run tcpdump and view the output in real time. Unfortunately, the output will include the ssh connection information as well and therefore it’s quite useless. The simple solution is to filter out ssh:

tcpdump [options] not port ssh

Thanks to http://forum.soft32.com/linux2/tcpdump-filter-examples-ftopict29715.html.

Leave a Reply

Your email address will not be published. Required fields are marked *


eight − 6 =

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>