Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

F5 Traffic Capturing

Posted on 2014-03-12
1
Medium Priority
?
309 Views
Last Modified: 2014-03-17
I was just wondering how I can go about capturing data from the F5 and then transferring the file over to my ftp server to review. Also, these are ssl'ed traffic so was just wondering if how I can view the data.
0
Comment
Question by:LateNaite
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 64

Accepted Solution

by:
btan earned 1500 total points
ID: 39926143
actually F5 has (need registration) tcpdump and this can be easily achieved by specifying the interface or vlan segment (and of course the port, in this case 21) to create the pcap and then have that "Exported" e.g.

tcpdump -ni 1.1 tcp port 80 -w/var/tmp/http.cap

tcpdump -ni public_vlan tcp port 21 -w/var/tmp/ftp.cap

tcpdump -ni 0.0 udp 1645 -w/var/tmp/all_interfaces_radius.cap

There is (need registration) ssldump

Another mean is using iRule on the high speed logging, pse see this

https://devcentral.f5.com/articles/irules-high-speed-logging-spray-those-log-statements#.UyGmjM6YPj0
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
In this article, WatchGuard's Director of Security Strategy and Research Teri Radichel, takes a look at insider threats, the risk they can pose to your organization, and the best ways to defend against them.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question