Wireshark · Wireshark-users: [Wireshark-users] remote capture framework

Wireshark-users: [Wireshark-users] remote capture framework

From: Morty <morty+wireshark@xxxxxxxxxx>

Date: Thu, 13 May 2010 17:58:26 -0400

I have a whole bunch of hosts at various WAN sites that are used for
remote captures.  Right now, people log in to them remotely and kick
off tcpdump or wireshark on the host itself.  I'd like to get away
from that.  I'm willing to develop something myself, but prefer to not
reinvent the wheel.  rpcap looks like a step in the right direction.
But it seems to be a streaming solution, which is bad over a WAN; it
doesn't seem to have a mechanism to centrally list many supported
devices; and it doesn't seem very cross-platform.  Is rpcap more
capable than I am seeing?  Is there a different (free) option?

Thanks.

- Morty

Follow-Ups:
- Re: [Wireshark-users] remote capture framework
  - From: Phil Paradis
- Re: [Wireshark-users] remote capture framework
  - From: Max P

Prev by Date: Re: [Wireshark-users] Filter out a string using a display filter
Next by Date: Re: [Wireshark-users] One NIC on public side
Previous by thread: Re: [Wireshark-users] Filter out a string using a display filter
Next by thread: Re: [Wireshark-users] remote capture framework
Index(es):
- Date
- Thread