tcpdump

Sniffing Elasticsearch Queries

Recently at work we were trying to find out exactly what query was running that was causing an exception in our application. Fortunately, this was quick and easy using good old tcpdump: # tcpdump -A -nn -s 0 \ "tcp dst port 9200 and \ (((ip[2:2] - ((ip[0]&0xf)…