Sniffing, Wireshark

Capturing snmp traffic with wireshark

1. Open wireshark with root privilleges.

sudo wireshark

2. Select Capture->Interfaces from the menu.

3. A window will open. Click Options on your desired interface, for ex. eth0.

4. Type udp port 161 or udp port 162 (default ports).

5. Click Start.

If you are capturing the whole traffic, type snmp in filter field.