Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 12884] sshdump only captures a few packets

Wireshark-bugs: [Wireshark-bugs] [Bug 12884] sshdump only captures a few packets

Date: Tue, 13 Sep 2016 17:45:52 +0000

Comment # 18 on bug 12884 from Graham Bloice

(In reply to Dario Lombardo from comment #17)
> (In reply to Graham Bloice from comment #15)
> > a quoting issue?
> 
> It's my fault. I stripped too many quotes out. Restore single quotes around
> the filter, and it should work.

The command:

    plink ssh-host "tcpdump -i eth0 -w - -f 'not ((host fe80::5efe:a00:20f or
host 10.0.2.15 or host fe80::48cf:f21:d2b2:b88c) and port 22)'" >
c:\temp\sshdump

produces a valid capture file.  Note that this uses a pre-defined PuTTY session
for ssh-host via pre-shared keys with PAgeant, the PuTTY equivalent of
ssh-agent.

You are receiving this mail because:

You are watching all bug changes.

References:
- [Wireshark-bugs] [Bug 12884] New: sshdump only captures a few packets
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 12884] sshdump only captures a few packets
Next by Date: [Wireshark-bugs] [Bug 12884] sshdump only captures a few packets
Previous by thread: [Wireshark-bugs] [Bug 12884] sshdump only captures a few packets
Next by thread: [Wireshark-bugs] [Bug 12884] sshdump only captures a few packets
Index(es):
- Date
- Thread