I want to document all inbound and outbount traffic from an ec2 machine. I want all to be kept on a log on the machine (or on an s3 bucket, nevermind...) basiclly I need a log that sniffs all the traffic. For example if I do a cURL command from the machine to another server I want the request and the response to be documented to a log (on 80 and 443 ports).
Can you recommend which way is best to implement these requirements? Currently, I don't know which direction should I follow and looking for guidance in implementing a solution
Just need a log with a specification of the GET, PUT, etc...
I tried working with tshark (Wireshark cli) but all the logs I can save are encrypted. I don't need encrypted information, just the request and response itself like you get immediately when you do the curl command.
Does anyone have a solution in that matter? Thanks!
