Search this Blog

Thursday, January 16, 2014

What are the steps to configure the IP Traffic Packet Capture ?


What are the the procedure for configuring IP Traffic export and the Packet Capture for troubleshooting and monitoring the devices ?

IP Traffic Export allows you to configure your router to export IP packets received on multiple, simultaneous WAN or LAN interfaces. 

Configuration: IP Traffic Capture

Below is the sample configuration created and IP Traffic captured on Cisco Unified Border Element (CUBE) ISR-G2, IOS 15.1.2T release for troubleshooting and monitoring the SIP Calls routed through the CUBE.

1. Configure capture profile

!
create profile
ip traffic-export profile corp1 mode capture
bidirectional
incoming access-list 123
outgoing access-list 123
!
! access-list to filter only SIP messages (port 5060)
access-list 123 permit udp any any eq 5060
access-list 123 permit tcp any any eq 5060
!
! apply to an interface, default memory is 5M
interface fa0/0
ip traffic-export apply TAC [size ]


2. Capture traffic with these exec (enable) level commands

Note: The exec cmds don’t appear until a profile has been configured

router#traffic-export interface fa0/0 clear
router#traffic-export interface fa0/0 start

router#traffic-export interface fa0/0 stop



3. Export the pcap file to a server

router#traffic-export interface fa0/0 copy ftp://x.x.x.x/capture.pcap

Now you can see the protocol SIP call flow using Wireshark.

Citation - This blog post does not reflect original content from the author. Rather it summarizes content that are relevant to the topic from different sources in the web. The sources might include any online discussion boards, forums, websites and others.

No comments :

Post a Comment

 
/* Google Analytics begin ----------------------------------------------- */ /* Google Analytics end ----------------------------------------------- */