Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
356
Views
10
Helpful
3
Replies

IOS monitoring packets

Go to solution
albertobrivio
Level 1
Level 1

‎05-19-2006 07:49 AM - edited ‎03-09-2019 02:58 PM

Hi ARSHAD,

Posted by: albertobrivio - May 19, 2006, 8:11am PST

I'd like to know if does in IOS environment exist command like "show conn" or "capture" normally available in PIX firewall, in order to take a look at the packet source/destination address/port crossing interface.

Regards

Alberto Brivio

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
arshad
Cisco Employee
Cisco Employee

‎05-19-2006 09:46 AM

Alberto,

If you're asking in IOS firewall context then you can get the outputs like

show ip inspect session detail (Provided you have IOS firewall configured and applied on interface).

If you want to monitor all the packets going in out from the interface you need to check the "netflow" technology .

Enable "ip flow ingress" on the specific interface and then do "show ip cache flow" you'll be able to see the traffic flow.

If you're interested in some functionality like "tcpdump" like sniffer capability in IOS let me know as well.

Thanks and Regards

Arshad

View solution in original post

0 Helpful
3 Replies 3

Go to solution
arshad
Cisco Employee
Cisco Employee

‎05-19-2006 09:46 AM

Alberto,

If you're asking in IOS firewall context then you can get the outputs like

show ip inspect session detail (Provided you have IOS firewall configured and applied on interface).

If you want to monitor all the packets going in out from the interface you need to check the "netflow" technology .

Enable "ip flow ingress" on the specific interface and then do "show ip cache flow" you'll be able to see the traffic flow.

If you're interested in some functionality like "tcpdump" like sniffer capability in IOS let me know as well.

Thanks and Regards

Arshad

0 Helpful

Go to solution
albertobrivio
Level 1
Level 1
In response to arshad

‎05-23-2006 12:39 AM

Hi ARSHAD,

thanks for your reply, it has been very useful.

Anyway,if you're other suggestions / tips about functionality you was talking to (like "tcpdump" and sniffer capability in IOS) I'll be very gratefully.

Regards

Alberto Brivio

0 Helpful

Go to solution
Fernando_Meza
Level 7
Level 7
In response to albertobrivio

‎05-23-2006 03:04 AM

Adding a bit more I suggest you using Netflow analyser. you can download a 30 days trial version from the below link. The only thing you need is to configure the routers with netflow and the system where netflow analyzer is installed will do the rest. After the 30 days expired you can still use the application for 2 interfaces ONLY which is great if you only need to monitored on entry point ..i.e Internet router.

http://manageengine.adventnet.com/products/netflow/index.html

http://manageengine.adventnet.com/products/netflow/help.html

i hope it helps ... please rate it if it does !!!

Customers Also Viewed These Support Documents