ScreenOS Firewalls (NOT SRX)
ScreenOS Firewalls (NOT SRX)

Newbie to ffilter and snoop

03.24.09   |  
‎03-24-2009 04:06 AM

Can you use wildcards in ffilter and snoop. ie can I run snoop and pipe to include traffic from a  specific subnet, not a specific address?

 

many thanks

2 REPLIES
ScreenOS Firewalls (NOT SRX)

Re: Newbie to ffilter and snoop

03.24.09   |  
‎03-24-2009 09:16 AM

Hi Tob

 

i don't think you can use wildcards with snoop^filter and ffilter, i know we can use  snoop filter with opetion src & dst ip , tcp , interface ...etc try CLI command 

# snoop filter ?

 

 or with ffilter try CLI command 

# ffilter ? 

 

and after that you can "debug flow basic" or try also  ? different option .

 

if you need more help 

 

Regard 

**If this reply solved your problem click on Kudos **
Kind Regard
http://www.linkedin.com/in/mkhitmane
personal mail: mehdi.khitmane@gmail.com
ScreenOS Firewalls (NOT SRX)

Re: Newbie to ffilter and snoop

03.24.09   |  
‎03-24-2009 02:22 PM

Hi

 

This is a pretty comprehensive guide for debugging from Andy :

http://kb.juniper.net/index?page=content&id=KB12208

 

And no, we cant wild-card for the filters

****pls click the button " Accept as Solution" if my post helped to solve your problem****