Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
nathan_h
Staff
Staff

Created on ‎05-19-2022 09:21 PM Edited on ‎05-19-2022 09:45 PM By Community Manager

Article Id 212657

Technical Tip : How to capture the whole packets when 'Packet size is limited during capture' is seen on the captured packets

Description This article describes on how to capture the whole packets for 'Packet size limited during capture'.
Scope FortiGate
Solution

1) Use the command below to capture the whole packets and save it on a file.

 

# diag sniffer packet any '<filter>' 6 0 snaplen

 

Example:


# FortiGate-VM64-AWS # diagnose sniffer packet any 'host 8.8.8.8' 6 0 l snaplen
    Using Original Sniffing Mode interfaces=[any] filters=[host      8.8.8.8]
    pcap_snapshot: snaplen raised from 0 to 262144 2022-05-17        03:03:12.599435 port1 out 172.31.0.132 -> 8.8.8.8: icmp:         echo request
....


2) Convert the file to pcap by following the below article.

 

https://community.fortinet.com/t5/FortiGate/Technical-Note-How-to-import-diagnose-sniffer-packet-dat...
1564
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.