Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
682
Views
0
Helpful
1
Replies

Decrypt control dtls/tls connection

Kanan Huseynli
VIP
VIP

‎03-11-2022 02:02 AM

Hi there,

 

is there a way to decrypt control traffic? As being "routing guy" it is always interested to see what type of information is exchanged in routing protocol, what packet types routing protocol has (omp in case of sd-wan), but since OMP runs over TLS/DTLS we normally cant see its packet header. I did research but most blog/forum information explains decryption method for we traffic in different OS. TLS/DTLS in sd-wan is not web traffic hence i couldnt decrypt using well-known methods.

 

did anyone try this type of decryption?

 

thanks in advance,

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

Labels:
0 Helpful
1 Reply 1

svemulap@cisco.com
Cisco Employee
Cisco Employee

‎03-11-2022 06:24 PM

Hi Kanan - 

 

Your understanding is right.  Yes, for a routing person, we all want to see the info.   But, currently there is a no way to see decrypted packet.   Using vManage packet capture feature, we can get a pcap file, but this is after the encryption has happened internal to the box. 

Same applies if fia method is used on the SD-WAN XE device or tcpdump on vEdge device.

 

HTH. 

0 Helpful
Customers Also Viewed These Support Documents
Top