Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
pginete
Staff
Staff

Created on ‎02-14-2021 10:29 PM Edited on ‎07-14-2022 08:30 AM By Anonymous

Article Id 197377

Technical Tip: How to do a sniffer/packet capture by network as a filter

Description
This article describes how to do a sniffer using a network as filter.

Solution
Sniff is a useful command when debugging routing problems.

To do a sniff, follow the syntax below:

# diagnose sniffer packet <interface> <'filter'> <level> <count> <tsformat>
 
 
Example of network as a filter:

First filter: Sniff from two networks.
# diagnose sniffer packet any ‘net 1.1.1.0/24 and net 2.2.2.0/24’ 4 0 l
Second filter: Sniff from one source network to destination network.
# diagnose sniffer packet any ‘src net 1.1.1.0/24 and dst net 2.2.2.0/24’ 4 0 l
Third filter: Sniff from one source network doing a ping of destination network.
# diagnose sniffer packet any ‘src net 1.1.1.0/24 and dst net 2.2.2.0/24 and icmp’ 4 0 l

 

Labels:
16227
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.