On Mon, 27 Sep 2021 19:33:31 +0200 Per Jessen <per@computer.org> wrote:
Dave Howorth wrote:
I also tried installing tcpdump on the pi and got that to display in the opensuse xterm I'm running ssh to the pi in. But I don't understand how to connect that to wireshark.
You run tcpdump on the pi with the -s0 and the -w<file> options to capture packets according to your spec. Copy the packet capture to whereever for analysis with wireshark.
Thanks Per. That works. I suspect I have a more fundamental problem now. I don't see any traffic from the device I'm trying to inspect. I suspect that is because it is connected via a mesh repeater and there's nothing else on that repeater's wifi network. They're all on the main router's mesh master wifi. So whilst everything can talk to one another happily via the router, I suspect tcpdump can't see the packets?