HI, I want to capture data using wireshark in a way that I can see all the servers/Ip my request is going through and getting the response back to my machine. Currently I only see two Ip's ..one is my IP and second is may be webserver of my application. is there a way to capture all the servers involved in the request and response? asked 06 Jul '17, 07:43 Sid147228 |
One Answer:
Not from your local PC. You can use answered 06 Jul '17, 08:09 sindy |
Thanks Sindy. I am not a network administrator and yes our application has multiple LB across layers. We have implemented data in transit strategy to our design and want to see if data is flowing according to the implemented strategy.e.g. Between Client to LB it will be HTTPS ..from LB to App servers it will be HTTP/...similarly at different layers of the application.
Well, in that case you are still in a good position as the servers are yours so you can capture at them. If you sync them well using NTP, you can run
tcpdump
on all the servers and the client simultaneously and then merge the files to see how the request processing went at different stages. Or just do a lot of subtraction and division when handling the files one by one.