Dear Team,

Consider the below setup of IPSec site to site vpn between two firewalls, I would like to capture the packets in each direction of 1 firewall.

                                     Lan-172.16.1.1        wan-ip-1.1.1.1                      wan-ip-2.2.2.2          Lan-10.1.1.1

lan2pc 172.16.1.100=================ASA2============={ISP}==============ASA1===========lan1pc 10.1.1.100

Can I use the below captures to check if the packets are transmitting properly ? Or would I have to use any other packet capture filters as well ?

Assuming i have started an interesting traffic like ping from 10.1.1.100 machine to 172.16.1.100, and assuming i am facing some decaps or encaps values not increment issues, for which I would like to do these troubleshooting. Pls help.

# clear capture /all
# capture capout interface inside match ip host 10.1.1.100 host 172.16.1.100
# show cap capout
# clear capture /all
# capture capout interface outside match ip host 10.1.1.100 host 172.16.1.100
# show cap capout
# clear capture /all
# capture capout interface outside match ip host 172.16.1.100 host 10.1.1.100
# show cap capout
# clear capture /all
# capture capout interface inside match ip host 172.16.1.100 host 10.1.1.100
# show cap capout
# clear capture /all