Forum Discussion

Nimbostratus

Mar 26, 2013

TCPDUMP captures

Is there a way to capture traffic through an LTM in both directions? I've captured a few tcpdumps, but they are all in one direction (i.e. filter a specific ip address and it is always either a sour...

management

monitoring

smp_86112

Cirrostratus

Apr 10, 2013

Posted By Tony Marques on 03/26/2013 12:34 PM

Hi Steve,

After I read your post I realize what I was doing "wrong". I was limiting my tcptump to destination port 4000. Therefore, that would only give me traffic in one direction. I removed that option and I'm now seeing everything I want to see (too much in fact).

Thanks,

Tony

If you just do this:

tcpdump -ni <host> and <port>

this will capture all traffic to/from and to/from port 4000. This should limit the traffic to what you want, but still see both directions. Sorry about the original post, my gt and lt chars got munged...

Forum Discussion

TCPDUMP captures

Recent Discussions

Server 2 causing application slowness

F5Access | MacOS Sonoma

AS3 Deployments (shared objects)

Inquiry on F5's Maintenance Mode Feature for Pool Members

Ansible modules for F5OS

Related Content

Tcpdump Capture

Decrypting BIG-IP Packet Captures without iRules

Decrypting BIG-IP Packet Captures Automatically

decrypted tcpdump capture without using an iRule using tshark

Automating Packet Captures on BIG-IP