I have a minimalist configuration on the router:
[admin@router] /tool sniffer> export
# dec/30/2017 00:08:37 by RouterOS 6.40.4
# software id = TJQF-1YLZ
#
# model = 750GL
# serial number = 467B04A9F1B1
/tool sniffer
set file-limit=100000KiB filter-interface=ether5-wan memory-limit=2500KiB \
streaming-enabled=yes streaming-server=192.168.4.66
192.168.4.66 is my laptop. I have been testing with either:
tzsp2pcap -f | wireshark -k -i -
or
tzsp2pcap -f | etherape -r -
My big problem with this
the captured packets are post-nat and have the router's external ip address, not the internal network ip addresses I am really interested in.
small problem
Off topic! But, maybe someone has a suggestion for an alternative
I really like a lot about EtherApe. But, there is also a lot I find really annoying. I'd like to try a better alternative. But, I have not found any alternatives.
Things that annoy me about EtherApe:
- I don't like the way EtherApe positions hosts on the screen.
- It's especially annoying when something I'm staring at trying to understand jumps around the screen.
- Somewhere I saw something about custom layout features. But, they are deprecated and going way.
- To be able to see what you are interested in you have to tweak several preferences settings.
- I wish the settings were able to auto-tune themselves to emphasize something interersting. If not what I am looking for.
