If you can obtain a full capture on the WAN interface, you could use a
Wireshark CaptureFilter to show only the traffic useful to you ('port 53'
for example). Alternatively, you could setup a transparent proxy (Squid
probably) to get the MiTM point of view or, depending on your intentions,
something like FakeNet might even be helpful.
_______________________________________________
Pauldotcom mailing list
[email protected]
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
