From: Greg Wendel (gwendel@gmail.com)
Date: Sun Dec 23 2007 - 04:00:49 ART
Doesn't exactly answer your question, but you could also use debug ip packet
dump and get hex output similar to the output below. OBVIOUSLY WE WOULDN'T
RUN THIS ON A PRODUCTION ROUTER WITHOUT AN UPDATED RESUME.
I followed Scott and Brian's advice and did the below on a dynamips
instance. A capture using dynamips would be the best option.
Thanks,
======
R1-Blathers#debug ip packet dump
IP packet debugging is on (dump)
R1-Blathers#sh debug
Generic IP:
IP packet debugging is on (dump)
*Mar 1 00:00:26.903: IP: s=192.168.3.2 (local),
d=224.0.0.5(Serial1/0.102), len 76, sending broad/multicast
07BBCA10: 45C0004C 00040000 E@.L....
07BBCA20: 015914E6 C0A80302 E0000005 0201002C .Y.f@(..`......,
07BBCA30: C0A80401 00000000 27F50000 00000000 @(......'u......
07BBCA40: 00000000 FFFFFF00 000A1201 00000028 ...............(
07BBCA50: 00000000 00000000 FFF60003 00010004 .........v......
07BBCA60: 00000001 ....
*Mar 1 00:00:26.915: IP: s=192.168.4.1 (local),
d=224.0.0.5(FastEthernet0/0), len 76, sending broad/multicast
07BBCB50: 45C0004C 00050000 E@.L....
07BBCB60:
R1-Blathers#conf 015913E6 C0A80401 E0000005 0201002C .Y.f@(..`......,
07BBCB70: C0A80401 00000000 27F50000 00000000 @(......'u......
07BBCB80: 00000000 FFFFFF00 000A1201 00000028 ...............(
07BBCB90: 00000000 00000000 FFF60003 00010004 .........v......
07BBCBA0: 00000001 ....
R1-Blathers#c
On Dec 23, 2007 12:29 AM, CCIE <ccie@axizo.com> wrote:
> Dear Experts,
>
>
>
> How I could configure a Router to capture certain type of traffic, then
> take
> that traffic to a protocol analyzer,
>
> E.g. capture ICMP and take it to a protocol analyzer
>
>
>
> Regards,
>
> Amin
>
> .
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
-- Gregory Wendel Springfield VA, 22153
This archive was generated by hypermail 2.1.4 : Tue Jan 01 2008 - 12:04:31 ARST