Using TCPdump and Wireshark to monitor network traffic
Here are a few shortcuts for common monitoring tasks with TCPdump. I will update this post over time as new needs arise. Monitor traffic to/from a single port: tcpdump -n -i eth0 ‘port 53’ Monitor and decode traffic to/from or regarding a particular domain or IP (there may be a better way, this is quick […]