Apple's official website gives detailed instructions on how to use Apple's devices to grab packets, which are handy for using remote virtual Interface (RVI). Using the RVI functionality requires a Mac system, and the Mac system on hand does not have the Wireshark software installed, in order to easily see the packet, using the Android system mentioned in the previous blog is similar to the grab method, that is, the use of Netcat (NC) The software establishes a TCP connection between Windows and Mac systems, sending tcpdump output from the MAC system command line directly through the established TCP connection to the Wireshark software in the Windows system. The specific steps are as follows
Operation in Mac system [1]
$ # The current list of interfaces.
$ ifconfig-l lo0 gif0 stf0 en0 en1 p2p0 fw0 the ppp0 $ # utun0 Run the Then with the tool of the UDID.
$ # Udid can be viewed under Xcode organizer or under the summary of a device in itunes. $ rvictl-s 74bd53c647548234ddcef0ee3abee616005051ed Starting device 74bd53c647548234ddcef0ee3abee616005051ed [Succeeded] $ # Get the ' list of interfaces again, and you can-the new virtual $ # network interface, RV
I0, added by the previous command. $ ifconfig-l lo0 gif0 stf0 en0 en1 p2p0 fw0 ppp0 utun0 rvi0 starting device d [succeeded] $ # Get the ' list of interfaces again, and you can the new virtual $ # network interface, R
Vi0, added by the previous command. $ ifconfig-l lo0 gif0 stf0 en0 en1 p2p0 fw0 ppp0 utun0 rvi0 $ #查看本机地址 $ ifconfig $ use tcpdump output to NC $ sudo tcpdump-n-S 0-w-| Nc-l 7100
Actions in Windows system: Run command-line programs with Administrator privileges, enter NC Save directory, enter
NC Mac System host IP address 7100 | Wireshark-k-s-i-
See more highlights of this column: http://www.bianceng.cnhttp://www.bianceng.cn/OS/extra/