You want to inspect traffic on a remote host but with the convenience of a Wireshark running locally?

May I share this snippet with you? :)

ssh <host> sudo tcpdump \
-i <interface> -U \
-w - "not port 22" | wireshark -i - -k

(this is for passwordless sudo accounts - not sure how this behaves with required sudo passwords)