Running wireshark using dumpcap, specifying the interface, and writting it to a file from 5 different command line boxes (5 interfaces being captured at one time) produces little to no results.
But when using wireshark gui, multi-selecting all interfaces, gives me what i need, but its all jumbled in the one capture. So I have no idea on the flow.
I need to do 5 captures from different points in the network at the same time to catch the flow. I thought I could get a single wireshark box hooked up to 5 different points in my DC, and run command line to capture to 5 different files at once. this doesnt seem possible. Has anyone tried to do this before?
No comments:
Post a Comment