SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  how to use monitor traffic matching

    Posted 02-08-2015 11:07

    when reading the datesheet of srx 1400, i find the 

    monitor traffic matching  “tcp || udp”

    if i want to monitor the traffic whose source is 172.16.100.1 destionantion is 8.8.8.8 ,protocal ,how is the command look like



  • 2.  RE: how to use monitor traffic matching

     
    Posted 02-08-2015 14:46

    tcpdump from shell or 'monitor traffic' from operational mode CLI will only provide packet dumps for traffic originating or terminating on the routing engine only. You probably want a packet capture done on transit traffic:

     

    http://kb.juniper.net/InfoCenter/index?page=content&id=KB21563



  • 3.  RE: how to use monitor traffic matching

    Posted 02-09-2015 06:34

    ok . if i want to see the check the traffic 

    destionation is my device say 1.1.1.1  source 2.2.2.2  protocol esp 



  • 4.  RE: how to use monitor traffic matching
    Best Answer

     
    Posted 02-09-2015 08:07

    Read through the KB I posted earlier:

     

    http://kb.juniper.net/InfoCenter/index?page=content&id=KB21563

     

    Go ahead and come up with a configuration for the datapath debug and post it here if you want verification of correctness.



  • 5.  RE: how to use monitor traffic matching

    Posted 02-09-2015 14:51

    ok . packet  capture is a bit troublesome . i also konw that security flow traceoptions can also acheive some degree function of packet capture .anyway thanks for your answer