Tcpdump to wireshark over SSH

From Urandom
Jump to: navigation, search
* You have to use password less logins on ssh.
wireshark -k -i <(ssh user@host tshark -w - not tcp port 22)

If the above does not work try this

ssh root@10.210.21.22 tcpdump -w - 'port !22' | wireshark -k -i -