ScreenOS Firewalls (NOT SRX)
Reply
Contributor
ludo
Posts: 26
Registered: ‎01-10-2008
0
Accepted Solution

snoop command

In firmware releases like ScreenOS 5.4, ScreenOS 6.0 (I imagine also 6.1), snoop detail len <XX> (where <XX> is a digit between 1 and 1514) doesn't work.

 

When we type "snoop info", we can see detail fixed to OFF, so how to enable it on these releases ?

 

Regards,

 

ludo
--------
JNCIP-SEC, JNCIA-FWV
Juniper Employee
mindwise
Posts: 8
Registered: ‎09-09-2008
0

Re: snoop command

It works for me.

 

Product Name: NetScreen-NS5GT-ADSL-WLAN
Serial Number: 01234567898765, Control Number: 00000000
Hardware Version: 1010(0)-(00), FPGA checksum: 00000000, VLAN1 IP (0.0.0.0)
Software Version: 5.4.0r10.0, Type: Firewall+VPN
Box in extended mode

www->       
www->
www-> snoop detail le
len                  snoop detail length
www-> snoop detail len
<number>             packet length to display (range: 1 - 1514)
www-> snoop det       
detail               snoop detail configuration
www-> snoop detail
Snoop detail turned ON

 

My best guess is that you are a read-write admin when you are trying to get detail.

Try it as root admin.

 

Cheers,

Contributor
ludo
Posts: 26
Registered: ‎01-10-2008
0

Re: snoop command

Ok, thanks.

In fact, I was connected with SSH connection using read/write user account (not netscreen) and it was not worked.

 

Now, I'm connecting in console port on same device using netscreen account 'snoop detail' option works !

 

Thanks for your comment.

 

ludo
--------
JNCIP-SEC, JNCIA-FWV
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.