Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
284
Views
0
Helpful
3
Replies

Access-list log

gbiettler
Level 1
Level 1

‎04-05-2004 07:57 AM - edited ‎03-02-2019 02:48 PM

I have created access-list log/access-group so I can see all the packets coming through the serial interface. I also can see it using 'sh log' command.

How can I debug a interface that would allow me to see all the packets going through it?

Thanks

Labels:
0 Helpful
3 Replies 3

deilert
Level 6
Level 6

‎04-05-2004 02:52 PM

you can use debug ip packet, I would not recommend using this unless you are matching it against an ACL . It can bring your box down in a matter of seconds if not used with caution

0 Helpful

tbaranski
Level 4
Level 4
In response to deilert

‎04-05-2004 05:35 PM

I believe only process-switched packets (i.e., not fast- or CEF-switched) are shown in 'debug ip packet'.

0 Helpful

thisisshanky
Level 11
Level 11

‎04-05-2004 07:48 PM

Create an access-list to match a particular source destination pair or destination address/port or source address/port combination that you want to watch in the debug.

Use debug ip packet to see the packets.

Usually the above method is recommended rather than using a full "debug ip packet", coz it can kill the router in a production environment.

Check this link.

http://www.cisco.com/en/US/tech/tk801/tk379/technologies_tech_note09186a008017874c.shtml

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
0 Helpful
Customers Also Viewed These Support Documents