I’ve been trying to capture traffic from a particular container, I set wireshark to monitor lxdbr0 interface, but it seems even when nothing is running in the container, a lot of traffic is collected, how exactly does monitoring a container work?
lxc info NAME should show you the host side interface name, if you dump that you’ll just get the traffic for the particular container.
1 Like