From owner-freebsd-questions@FreeBSD.ORG  Wed Jul  8 13:15:56 2009
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id A3265106564A
	for <freebsd-questions@freebsd.org>;
	Wed,  8 Jul 2009 13:15:56 +0000 (UTC)
	(envelope-from djuatdelta@gmail.com)
Received: from mail-ew0-f227.google.com (mail-ew0-f227.google.com
	[209.85.219.227])
	by mx1.freebsd.org (Postfix) with ESMTP id 36B838FC18
	for <freebsd-questions@freebsd.org>;
	Wed,  8 Jul 2009 13:15:56 +0000 (UTC)
	(envelope-from djuatdelta@gmail.com)
Received: by ewy27 with SMTP id 27so496650ewy.43
	for <freebsd-questions@freebsd.org>;
	Wed, 08 Jul 2009 06:15:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:received:date:message-id:subject
	:from:to:content-type:content-transfer-encoding;
	bh=YMOOexkDzH5smoLGchxRcwDQam9UYuWGKTzDPpZmKxA=;
	b=LvOnSuLK0svLuFBgLcIX/yd6X6PPierDeBCOiT7ih4fghbW+2qCKpyx5sWhQ5Udq24
	1/EC2SLwK0o6cGpniSIcs8zyz3memO3R8vDg/npT6GSzGeizyVjWEqGSudhMX7JkddoO
	ZJ7fllQrQJ5wvKxj54BbMJ22aaaTiZ96Fp++g=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:date:message-id:subject:from:to:content-type
	:content-transfer-encoding;
	b=Rj05k1IbKV88xgZGZ/JAwjCxp+2vU5eR450mLJS0+lvNIVKYvxmZpAEMwYHNdE0WUu
	/5Vd70mgooO4C0mxg3xGp5BPcUUmhJDQdAQwt/J9lwkHk8FYsqkWiFENLfNSWVP7+s/7
	MASK4Ag82FCuUDpT1Nkv8UYT/QVThP2Ji8xYw=
MIME-Version: 1.0
Received: by 10.216.51.202 with SMTP id b52mr1919986wec.38.1247058955243; Wed, 
	08 Jul 2009 06:15:55 -0700 (PDT)
Date: Wed, 8 Jul 2009 09:15:55 -0400
Message-ID: <b6c05a470907080615l1e674e07xfda169c75dfd9f59@mail.gmail.com>
From: Daniel Underwood <djuatdelta@gmail.com>
To: freebsd-questions@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Subject: Network traffic monitoring: BSD monitor & verifying encryption
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Jul 2009 13:15:56 -0000

Hi folks:

(1) I'm only used Wireshark and Ethereal to inspect network traffic,
and I've only used these on several occasion.  Would someone suggest
FreeBSD alternatives (console or xserver based?

(2) I'm testing my connection to a remote server.  The connection is
supposed to be encrypted. What's the easiest way to verify that the
data is in fact being encrypted?  I don't care to validate the
encryption itself; I trust that it is working properly, if it's
working at all.  I just want to know what, if anything, I can look for
in the traffic that will indicate encryption (e.g., is the initiation
of key-exchanges easy to locate?).