10-18-2017 04:51 AM - edited 03-01-2019 05:21 AM
Usually, we use tenet <IP> <port> from traditional switch or router to check server listening to the port.
like ping ==> iping and traceroute ==> itraceroute used in ACI
Do we have any mechanism to check similar thing.
Thanks in advance.
10-18-2017 09:31 AM
Shailesh,
A few questions:
1. What src/dst IPs are you trying to test port connectivity from/to?
a. IPs local to switch nodes/APIC nodes?
b. Endpoints?
If you are trying to see what is opened for endpoints to communicate with, you can check the following from an apic:
> show contract *contract_name*
> show access-list *access-group-name*
If you are looking to catch denies or permits given active traffic flows, you can refer to the following document:
-Gabriel
10-18-2017 10:11 PM
Thanks Gabriel for responding.
my query is how we can ensure endpoint listening on port 80 or it's a valid http server. In the traditional switches we used to use
telnet <IP of server> 80 and it used to respond.
Looking for similar arrangement in ACI.
Hope I'm able to spell my query correctly.
Thanks in advance
10-19-2017 03:42 AM
Hi,
You can use nmap from any Linux based workstation. Don't do this from a switch or ACI.
Nicolas
10-20-2017 01:34 AM
Thanks, this we need to do when we don't have access to end servers / and no reachability to system administrator.
So wanted to check similar arrangement / method in ACI to check this.
11-11-2020 06:14 AM
Has anyone found a way to do this from an ACI Leaf switch? This would be super handy
11-12-2020 10:18 AM
You can do it on Operational> Visibility & Troubleshooting .
iTraceroute supports ICMP, UDP, and TCP. When using UDP or TCP as the Layer 4 protocol, a source or range of source ports can be specified, as can a destination port or port range. The leaf ASIC decides how to forward this packet as if the source host sent it.
Hope you will find it helpful.
Ali
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide