Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
20835
Views
0
Helpful
5
Replies

Packet Capture with Cisco ACI

Thiyagarajan K
Level 1
Level 1

‎08-10-2016 04:06 AM - edited ‎03-01-2019 05:00 AM

Hello All,

I'm troubleshooting application issue and would like to know whether the request from client is reaching the APIC for that I'm trying to use tcpdump utility on ACI.

Can you help us to know the tcpdump syntax to capture traffic over inband interface or outofband interface with IP address 10.10.10.10?

Regards,

Thiyagu

Labels:
0 Helpful
5 Replies 5

Tomas de Leon
Cisco Employee
Cisco Employee

‎08-10-2016 08:00 AM

Application issue?  What type of application are you sending to the APIC? SDK or API?

Applications typically go thru the leaf and spines not the APIC. In regards to "tcpdump" on the APIC, it requires "root" access.  You would need to open a Cisco TAC Case and a Customer Support Engineer can assist you in troubleshooting the issue.

Thanks for using the Customer Support Community for ACI!

Cheers!


T.

0 Helpful

Thiyagarajan K
Level 1
Level 1
In response to Tomas de Leon

‎08-10-2016 07:41 PM

Thanks a lot Tomas. Could you please help me to know the tcpdump syntax to capture traffic on Leaf switches?

Regards,

Thiyagu

0 Helpful

Tomas de Leon
Cisco Employee
Cisco Employee
In response to Thiyagarajan K

‎08-10-2016 08:15 PM

Thiyagu,

It is hard to answer your question correctly with the limited amount of information provided. 

For example, if you wanted to capture a trace for SNMP Traps from a "management" interface, you could use:

tcpdump -i eth0 -f port 162 -vv

But if you are looking to look at some things in the fabric you need to look at using span or elam.

http://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/troubleshooting/b_APIC_Troubleshooting/b_APIC_Troubleshooting_chapter_01.html#d19876e1919a1635

Also Take a look at:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/troubleshooting/b_APIC_Troubleshooting/troubleshooting_wizard.html

If we had more specifics on your intent or what you are capturing, we may be able to provide additional information.

You can also open an Cisco TAC with more details of issue and they can assist you with your questions.

Cheers!

T.

0 Helpful

Thiyagarajan K
Level 1
Level 1
In response to Tomas de Leon

‎08-10-2016 09:37 PM

Apperciate your help Tomas. 

Could you please help me to know  the tcpdump command syntax to capture the ingress traffic on mgmt interface on leaf or on APIC?

Regards,

Thiyagu

0 Helpful

Tomas de Leon
Cisco Employee
Cisco Employee
In response to Thiyagarajan K

‎08-11-2016 06:37 AM

I gave you an example of tcpdump syntax in my previous reply.

For example, if you wanted to capture a trace for SNMP Traps from a "management" interface, you could use:

tcpdump -i eth0 -f port 162 -vv

For the leaf, you simply need to change the ports to what you want to look for. you can also look at:

http://www.tcpdump.org/tcpdump_man.html

You cannot run tcpdump as "admin" user on the APIC.

0 Helpful
Customers Also Viewed These Support Documents

Save 25% on Day-2 Operations Add-On License