We have a Firesight Management center(FS4000 v5.4.1) through which we are managing Multiple sourcefire sensors (ASA5516 - V5.4.1 and ASA5525 - V5.4.0). Sometimes we are facing issue with receiving the packets from these sensors. How do we check the sensor interface status from Defence center and what is command to check packet flowing from different sensor in Defence center.
You can use tcpdump with interface, port and IP filter to see traffic between sensor and FMC. Don't know the interface name in FS4000 but in a FMC I can use " sudo tcpdump -i eth0 port 8305" to see the traffic between FMC and sensor.
You can use tcpdump with interface, port and IP filter to see traffic between sensor and FMC. Don't know the interface name in FS4000 but in a FMC I can use " sudo tcpdump -i eth0 port 8305" to see the traffic between FMC and sensor.
br, Micke
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
