Wireshark Remote Bintec
Preperation
- sudo ln -s /usr/bin/wireshark /usr/bin/ethereal
- cd /usr/local/sbin
- wget http://www.bintec-elmeg.com/fileadmin/user_upload/Downloads/53/bricktrace-v2.53-x86-32
- mv bricktrace-v2.53-x86-32 bricktrace
- chmod +x bricktrace
Determine the number of the Interfaces
logon to the Bintec
- rs120:> ifconfig
We find two relevant Interfaces:
- wan 1400
- lan 1000
Packet capture
On Linuxhost
All Traffic on Lan
- bricktrace --pwd sysadm bintec 1000
Ethereal
Https(TCP) traffic on lan interfaces
- bricktrace --pwd sysadm bintec 1000 -B ::6:443: --ethereal
ISAKMP traffic on wan interfaces
- bricktrace --pwd sysadm bintec 1400 -B ::17:500: --ethereal
ESP traffic on wan interfaces
- bricktrace --pwd sysadm bintec 1400 -B ::50: --ethereal
ICMP on Lan
- bricktrace --pwd sysadm bintec 1000 -B ::1