Ubiquiti Airmax gear has tcpdump included. We can easily use it to capture packets to a file and then use SCP from the device to copy the file for analysis.<\/p>\n\n\n\n
SSH to the device<\/p>\n\n\n\n
ssh ubnt@192.168.1.20\ncd \/tmp\/<\/pre>\n\n\n\nStart tcpdump with the following command. Change ath0 and file.cap to the appropriate interface and file name.<\/p>\n\n\n\n
tcpdump -i ath0 -w file.cap<\/pre>\n\n\n\nAfter we are done collecting, we can quit with ctrl + c<\/p>\n\n\n\n
Now we can use scp or sftp to copy the files off. There is an issue using scp or sftp from a normal Linux machine to the radio, fails with a “sh: \/usr\/libexec\/sftp-server: not found”. It works fine if you initiate scp from the radio.<\/p>\n\n\n\n
scp \/tmp\/file.cap username@remoteip:~\/<\/pre>\n","protected":false},"excerpt":{"rendered":"Ubiquiti Airmax gear has tcpdump included. We can easily use it to capture packets to a file and then use SCP from the device to copy the file for analysis. SSH to the device ssh ubnt@192.168.1.20 cd \/tmp\/ Start tcpdump … Continue reading