Tutorials/Tutorial: Packets don't lie: how can you use tcpdump/tshark (wireshark) to prove your point.
From LCA2016 Delegate wiki
Revision as of 14:09, 3 February 2016 by Guzenkovsn@gmail.com
Please note that this is a tutorial, not a talk. You should have tcpdump and wireshark INSTALLED and do some captures BEFORE you come to the tutorial. To find wireshark packages do something like this:
#archlinux pacman -Ss wireshark #debian apt-cache search wireshark #fedora yum search wireshark
Please install both GUI and CLI packages.