10-11-2020 04:14 AM
Hello,
How we can enable tcpdump on APIC or leaf to check snmp and syslogs traffic is passing from ACI fabric.
Thanks,
Sufiyan
10-11-2020 05:30 AM
Hi @dseth,
For this kind of packet captures, it can be done with the help of Cisco TAC or Cisco Professional Services since root access privilege is required in the Linux shell.
Regards.
10-12-2020 05:33 AM
Hello @Hector Gustavo Serrano Gutierrez So is there any way we can check the traffic logs by our self.
11-02-2020 12:02 AM
You can use tcpdump on leaf:
tcpdump -i eth0 -f port 514 (in case of default syslog port 514)
11-06-2020 05:04 AM - edited 11-06-2020 05:46 AM
Hi dseth,
SNMP trap generated by leaf on the oob interface
NTP packet received on inband
Tcpdump on knet or tahoe interface
In Gen-2 Hardware you can use tcpdump2 which is script decoding internal header on the top of tcpdump.
TCP dump on int kpm_inb on leaf to see if we get ARP (note we only see Rx ARP on this interface, not Tx)
And so on.
I hope you will find it helpful.
Regards,
Ali
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide