Run tcpdump(1) get data about port # 80 (httpd server)
Code:
tcpdump -n -i ${interface} -s 0 -w ${output.file} src or dst port 80
and Use gui tools such as net/wireshark (which is both network analyzer that lets you capture and interactively browse ) to see data later on. Usually servers do not have GUI installed so use tcpdump and wireshark combo.
Maybe sniffing is the wrong place to start when analysing LAN traffic, because it presupposes an in-depth knowledge of network protocols. You'd be much better served with something like net/ntop which will show you traffic flows and graphs in a web interface.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.