Wireshark for pfsense?
-
Hi there
Anybody has impelemented this on the network??
-
https://docs.netgate.com/pfsense/en/latest/book/packetcapture/using-wireshark-with-pfsense.html
-
I use this method, however, sometimes, the tcpdump gets stuck after closing the wireshark.
I have to kill the process. -
i use SPAN protocol where there is a Raspberry with Wireshark listening
you need a switch that support it or a dedicated network interface on pfSense
https://docs.netgate.com/pfsense/en/latest/book/bridging/creating-a-bridge.html#span-port -
Why is there no package for this built in pfsense?
-
because it's a firewall and wireshark is a network protocol analyzer?
"packet capture" is already available under Diagnostics, probably wireshark would be too heavy for embedded systems -
I agree, SPAN is a good solution, we use on Cisco SG350 series switchs with Wireshark VLAN + SPAN