wireshark-remote: Use tcpdump

Signed-off-by: Florian Pritz <bluewind@xinu.at>
author: Florian Pritz <bluewind@xinu.at> 2018-07-24 11:42:03 +0200
committer: Florian Pritz <bluewind@xinu.at> 2018-07-24 11:42:03 +0200
commit: 45b6905896f63b1e4deb37e6ef22daf5e261a6ce (patch)
tree: 3ca8ef3ba9de731d0dbe7bb15b1d8beabb0ec00e
parent: 23c10dfefc48f57491bd1c47d3f5679bd07445b8 (diff)
download: bin-45b6905896f63b1e4deb37e6ef22daf5e261a6ce.tar.gz
bin-45b6905896f63b1e4deb37e6ef22daf5e261a6ce.tar.xz
1 files changed, 8 insertions, 1 deletions
diff --git a/wireshark-remote b/wireshark-remote
index a7116b7..756771b 100755
--- a/wireshark-remote
+++ b/wireshark-remote
@@ -2,8 +2,15 @@
 
 host="$1"
 iface="$2"
+shift 2
+
+if (($#>0)); then
+	filter="and ($*)"
+fi
 
 #wireshark -k -i <(ssh "$host" tshark -i "$iface" -w - not tcp port 22)
 #wireshark -k -i <(ssh "$host" dumpcap -q -i "$iface" -w /dev/stdout 'not\ tcp\ port\ 22')
-wireshark-gtk -k -i <(ssh "$host" dumpcap -q -P -i "$iface" -w - -f 'not\ port\ 22')
 #wireshark -k -i <(ssh "$host" /home/flo/capture.sh "$iface")
+
+#wireshark-gtk -k -i <(ssh "$host" dumpcap -q -P -i "$iface" -w - -f 'not\ port\ 22')
+wireshark-gtk -k -i <(ssh "$host" tcpdump -i "$iface" -w - "'not port 22 $filter'")
author	Florian Pritz <bluewind@xinu.at>	2018-07-24 11:42:03 +0200
committer	Florian Pritz <bluewind@xinu.at>	2018-07-24 11:42:03 +0200
commit	45b6905896f63b1e4deb37e6ef22daf5e261a6ce (patch)
tree	3ca8ef3ba9de731d0dbe7bb15b1d8beabb0ec00e
parent	23c10dfefc48f57491bd1c47d3f5679bd07445b8 (diff)
download	bin-45b6905896f63b1e4deb37e6ef22daf5e261a6ce.tar.gz bin-45b6905896f63b1e4deb37e6ef22daf5e261a6ce.tar.xz