Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Packet level debug for AnyConnect?

Is there an easy way to get a packet level debug for an AnyConnect client?  Wireshark on the client doesn't seem to recognize the AnyConnect virtual adapter, and I can't find anything in the AnyConnect documentation.  I can span the inside ASA interface to get a capture from there, but that doesn't give me visibility at what is being put onto the Cisco VPN adapter.

3 REPLIES

Re: Packet level debug for AnyConnect?

Hi,

Have you tried ''debug webvpn svc 255'' ?

Federico.

New Member

Re: Packet level debug for AnyConnect?

Hi Frederico,

Thanks for the reply.  From my testing 'debug webvpn svc 255' doesn't provide any raw client packet data except for the session initiation.  I'm looking for either of the following:

1) A snapshot of every packet through the L4 header that the AnyConnect client sends, but prior to encapsulating in the SSL tunnel.

2) A full packet capture for all traffic that the AnyConnect client sends, but prior to encapsulating in the SSL tunnel.

Thanks,

Jim

Re: Packet level debug for AnyConnect?

Have you tried the capture command?

You can set a capture, i.e

access-list cap permit ip Internal_network Pool_VPN
access-list cap permit ip Pool_VPN Internal_network
capture cap access-list cap interface outside

You can try setting the capture for the packets before they are encrypted,
but I'm not sure if its going to capture the commands before encryption.

Federico.

4184
Views
0
Helpful
3
Replies
CreatePlease to create content