ssh - How to use Wireshark in live mode via SSHFS -

i have remote machine run experiments on. on machine, want sniff packets sent , received. on machine in front of me, want open wireshark , see packets live.

the way have access remote machine ssh.

what do?

1. establish ssh-mount using sshfs.
2. make sure stdbuf available (using homebrew on os x or cygwin on windows).

3. start capturing on remote machine using

   stdbuf -o0 sudo ibdump -s -o - > sniffer.pcap

4. run wireshark on client

   stdbuf -o0 tail -c +0 -f /sshfsmount/sniffer.pcap | ./wireshark.exe -k -i -