Re: Assistance with Capturing cURL Request using tcpdump

[Michael Richardson <mcr () sandelman ca>]

Kaushal Shriyan <kaushalshriyan () gmail com> wrote:
    > I am using Postman to invoke a REST API call. Is there a way to capture the
    > cURL (https://curl.se/) request (including headers and body) initiated by
    > the Postman REST API client to the application server running RHEL 8.10 OS,
    > and then to the backend server/system using tcpdump and analyze the packet
    > capture (.pcap) file in Wireshark?

Yes.
If it's HTTPS, then you will only see L3/L4 info, and no L6/7 like headers
and body.

    > Headers: Contain metadata about the request, such as content type, user
    > agent, etc.
    > Body: Contains the data that we want to send (if any). Typically used with
    > POST and PUT methods.

window1> tcpdump -i any -w myfile.pcap ip host postman-rest-api-client and tcp port 80

window2> run test

window1> ^C

If this is on the same system, then maybe:
   window1> tcpdump -i lo -w myfile.pcap tcp port 80

_______________________________________________
tcpdump-workers mailing list -- tcpdump-workers () lists tcpdump org
To unsubscribe send an email to tcpdump-workers-leave () lists tcpdump org
%(web_page_url)slistinfo%(cgiext)s/%(_internal_name)s