Hi Team,
I am trying to redirect the tcpdump capture on an interface to a remote server usinf ssh pipe as below -
tcpdump -i any ! host 172.xx.xx.116 -s 0 | ssh [email protected] “cat > dump.pcap”
I do not have any issue with redirection but when I open it in Windows PC I see the format is not understood by Wireshark.
As I know wireshark expects binary file but I am saving it as a text file so not sure if I need some converter to work this out. Due to limited space in our hardware units we often need to redirect the tcpdump caputre. Also I am not sure if with winScp the file gets corrupted.
Please help me here.
Thanks Rish
