Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
18.1 Legacy Series
»
[SOLVED] tshark on OPNsense?
« previous
next »
Print
Pages: [
1
]
Author
Topic: [SOLVED] tshark on OPNsense? (Read 3515 times)
dpatterson
Newbie
Posts: 10
Karma: 2
[SOLVED] tshark on OPNsense?
«
on:
June 19, 2018, 09:06:13 pm »
Is it possible to install tshark on an OPNsense host?
If so, where can I find documentation on how to do so.
TIA,
D.
«
Last Edit: June 20, 2018, 07:35:18 pm by fabian
»
Logged
fabian
Hero Member
Posts: 2770
Karma: 199
OPNsense Contributor (Language, VPN, Proxy, etc.)
Re: tshark on OPNsense?
«
Reply #1 on:
June 19, 2018, 09:22:56 pm »
Why is it needed? tcpdump is already there and it also has a GUI.
Logged
dpatterson
Newbie
Posts: 10
Karma: 2
Re: tshark on OPNsense?
«
Reply #2 on:
June 19, 2018, 09:31:44 pm »
Packet Capture/Packet View isn't showing me enough detail.
I need to drill down into the results.
The issue: I have a site-to-site IPsec VPN to a customer site.
Connections to an application at that site no longer work since installing my OPNsense firewall and creating the new VPN.
Packt Capture shows traffic between the hosts in question, but I can't drill down into it to see what's really happening (SYNx, ACKs, etc.)
Exporting the file and opening it in WireShark was of no use because every packet is just an ENC and I can't drill down into them.
I was hoping that with tshark I could do so with an SSH session to the firewall. Is this incorrect?
Thanks.
Logged
dpatterson
Newbie
Posts: 10
Karma: 2
Re: tshark on OPNsense?
«
Reply #3 on:
June 19, 2018, 11:46:14 pm »
So in the end I was able to update Wireshark on my Mac and was then able to properly interpret the tcpdump file from my OPNsense box.
Consider this question closed.
Thanks!
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
18.1 Legacy Series
»
[SOLVED] tshark on OPNsense?
