For When You Can't Have The Real Thing
[ start | index | login ]
start > FortiOS > 5.4 > debug sniffer

debug sniffer

Created by dave. Last edited by dave, 21 days ago. Viewed 22 times. #1
[edit] [rdf]
labels
attachments
(2017-11-23)

Problem

Want to sniff traffic flow.

Solution

# diag sniffer packet <interface> <'filter'> <verbose> <count> a

Filter syntax:

'[[src|dst] host<IP1>] [[src|dst] host<IP2>] [[arp|ip|gre|esp|udp|tcp] [port_no]] [[arp|ip|gre|esp|udp|tcp] [port_no]]'

Example:

# diag sniff packet port2 'host 139.60.169.2 and port 443' 1 999

<verbose>=

  • 1: print header of packets
  • 2: print header and data from IP of packets
  • 3: print header and data from Ethernet of packets
  • 4: print header of packets with interface name
  • 5: print header and data from IP of packets with interface name
  • 6: print header and data from Ethernet of packets with interface name
"a" = print times as absolute instead of relative to start time

(>>Source)

no comments | post comment

Virtual Dave Megaplex:

Internet Explorer 6 Users >>Click Here

(read this note about local search)

Logged in Users: (0)
… and 9 Guests.


Editing: snipsnap-help, Image Macro

(Et auditum est, et idcirco ego nunc simulare)

Installed 6 years and 336 days ago
Powered By >>SnipSnap Version 1.0b1-uttoxeter

This is a collection of techical information, much of it learned the hard way. Consider it a lab book or a /info directory. I doubt much of it will be of use to anyone else.

Useful:


snipsnap.org | Copyright 2000-2002 Matthias L. Jugel and Stephan J. Schmidt