How to do packet captures using the CLI CloudGenix?

How to do packet captures using the CLI CloudGenix?

26986
Created On 11/02/20 18:55 PM - Last Modified 02/23/23 23:50 PM


Question


How to do packet captures using the CLI CloudGenix?

Environment


CloudGenix 
Device Toolkit
 

Answer


  • Use the tcpdump command to capture;
tcpdump interface args=” “ show
User-added image
  • Saving Packet Capture to a File
tcpdump interface args=” “ show | save filename
User-added image
  • Viewing and Exporting a .pcap File
# file view sample.pcap
User-added image

Additional Information


  • For instance to use source IP and destination IP as filters, the syntax will be:
tcpdump 4 args=“host 1.1.1.1 and host 2.2.2.2” show
  • We can also use  protocol as a filter
tcpdump 4 args=“esp” show
  • Protocol, source IP and destination IP 
tcpdump any args="esp and host 192.168.50.1  and host 192.168.50.2" show
For more information please check
 https://docs.paloaltonetworks.com/prisma/prisma-sd-wan/prisma-sd-wan-ion-cli-reference/use-cli-commands/debug-commands/tcp-dump
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HBTKCA4&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language