10-02-2006 05:40 AM - edited 03-03-2019 02:11 PM
What is the Difference between capturing traffic creating a Dummy ACL and running a TCP dump? And how do i create a TCP dump? Iam running a Cisco PIX Firewall Version 6.1(5).
Awaiting your reply.
Regards
Navneet
10-02-2006 05:56 AM
A logging acl will provide very limited info about the flow and nothing about the payload. TCP dumping is used by all traffic sniffing technologies to examine this information. AFAIK there is no way to do a tcpdump-like action on your version of PIX software, but on PIX/ASA 7.x the new "capture" command was introduced and provides many powerful ways of doing an "on box" packet trace.
HTH pls rate!
10-02-2006 06:42 AM
Hi Morris,
Thanx for the reply.
Regards
Navneet
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide