https://community.cisco.com/t5/network-security/ids-4215-ip-logging/m-p/334090#M97029 <P>The IDS MC and Cisco's IDS book show configuration for IP packet capture for later viewing through Ethereal.</P><P>Question: If I set IP logging on the IDS, how do I retrieve the file for Ethereal analysis?</P> Sun, 10 Mar 2019 09:17:24 GMT jmayes 2019-03-10T09:17:24Z https://community.cisco.com/t5/network-security/ids-4215-ip-logging/m-p/334090#M97029 <P>The IDS MC and Cisco's IDS book show configuration for IP packet capture for later viewing through Ethereal.</P><P>Question: If I set IP logging on the IDS, how do I retrieve the file for Ethereal analysis?</P> Sun, 10 Mar 2019 09:17:24 GMT https://community.cisco.com/t5/network-security/ids-4215-ip-logging/m-p/334090#M97029 jmayes 2019-03-10T09:17:24Z https://community.cisco.com/t5/network-security/ids-4215-ip-logging/m-p/334091#M97030 <HTML><HEAD></HEAD><BODY><P>There are 2 (and possibly 3) ways for retreiving the IP Log file from the sensor.</P><P></P><P>1) From the CLI</P><P>You can use the "iplog-status" command in the sensor's CLI to view the status of the IP Logs and determine the iplog id of the log you are interested in.</P><P>You can then use the "copy iplog <IPLOGID> &lt;<A class="jive-link-custom" href="ftp://user" target="_blank">ftp://user</A>@host/directory/filename&gt;" to copy that IP Log to an ftp server than you can then access to copy the log to your desktop to run ethereal on.</IPLOGID></P><P></P><P>2) From IDM</P><P>Optionally you can view the list of IP Logs within IDM. Within IDM you can then download the IP Log directly to your desktop.</P><P></P><P>3) From another monitoring tool</P><P>I have heard that some monitoring tools are now offering a new menu option for downloading the IP Log from the sensor. I am not sure in which monitoring tools this menu option has been implemented.</P><P></P><P></P></BODY></HTML> Sun, 20 Feb 2005 21:12:08 GMT https://community.cisco.com/t5/network-security/ids-4215-ip-logging/m-p/334091#M97030 marcabal 2005-02-20T21:12:08Z