[ILUG] Reading TCP data packet contents
Thomas Bridge
thomasb at gmail.com
Wed Dec 14 12:58:54 GMT 2005
On 12/14/05, Ronan O Ciosoig <ronanoc at mac.com> wrote:
> Hi,
> I am trying to investigate the TCP transactions of a certain app on Mac OS X. I know you can use tcpdump to dump the packets, and use Ethereal or tcpshow to read the data, but neither of these are available on OS X. Any suggestions on how I sould go about it or apps I should use.
I find it hard to believe that the Mac doesn't support those
applications, but as this isn't a MAC list here's a Linux based
solution:
1. Get a Linux box.
2. Stick it on the same switch as the Mac box.
3. Set the Switch up to mirror the traffic to the mac box onto the
port with the Linux box.
4. Run etherreal
If you don't have a switch handy, stick both boxes into a hub and
that'll do the trick,
Thomas
--
Thomas Bridge
CCIE #14108
More information about the ILUG
mailing list