PIX:
capture pix_dmz_capture_1 access-list tac_capture buffer 10000000
interface dmz
capture pix_inside_capture_1 access-list tac_capture buffer 10000000
interface inside
no capture pix_dmz_capture_1
no capture pix_inside_capture_1
copy capture:pix_dmz_capture_1
tftp://172.16.1.200/pix_dmz_capture.cap pcap
copy capture:pix_inside_capture_1
tftp://172.16.1.200/pix_inside_capture.cap pcap
ASA:
capture asa_capture_inside_1 type raw-data access-list tac_capture
buffer 10000000 interface inside
capture asa_capture_outside_1 type raw-data access-list tac_capture
buffer 10000000 interface outside
no capture asa_capture_inside_1
no capture asa_capture_outside_1
clear capture asa_capture_inside_1
clear capture asa_capture_outside_1
copy /pcap capture:asa_capture_inside_1
tftp://172.16.1.200/asa_inside_capture.cap
copy /pcap capture:asa_capture_outside_1
tftp://172.16.1.200/asa_outside_capture.cap
PIX:
show clock
show conn local 172.16.99.1
show conn foreign 59.42.158.1
show local-host 172.16.99.1
show local-host 59.42.158.1
show xlate local 172.16.99.1
show xlate global 59.42.158.1
show capture
ASA:
show clock
show conn address 172.16.99.1
show conn address 59.42.158.1
show local-host 172.16.99.1
show local-host 59.42.158.1
show asp drop
show xlate
show capture
qq交流群 42776821
文章转载至