Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
242
Views
0
Helpful
3
Replies

Sniffing traffic with ASA5500

ronin2307
Level 1
Level 1

‎11-03-2005 12:06 PM - edited ‎03-09-2019 12:55 PM

I just purchased the ASA550 and since I am very new to Cisco equipment, I was wondering if it is possible to sniff packets on the ASA5500 and if so how?

thanks

Labels:
0 Helpful
3 Replies 3

fzamora
Cisco Employee
Cisco Employee

‎11-03-2005 01:04 PM

You can use the capture command for that, check below:

capture

To enable packet capture capabilities for packet sniffing and network fault isolation, use the capture command.

http://www.cisco.com/univercd/cc/td/doc/product/multisec/asa_sw/v_70/cref_txt/c.htm#wp1910869

Hope it helps

Franco Zamora

0 Helpful

ronin2307
Level 1
Level 1
In response to fzamora

‎11-03-2005 07:47 PM

is there an equivalent in the GUI?

0 Helpful

joneschw1
Level 1
Level 1
In response to ronin2307

‎11-04-2005 07:07 AM

Might be a bit easier to mirror the port that the ASA is on, at the switch level, and then use etherreal. There would be no configuration changes, etc. that you would need to do to the firewall. It would all be at the switch level. If your switch is unmanaged, you could a hub between the switch and the firewall, and then mirror by default on that.

0 Helpful
Customers Also Viewed These Support Documents