Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

F5 Traffic Capturing

Posted on 2014-03-12
1
Medium Priority
?
317 Views
Last Modified: 2014-03-17
I was just wondering how I can go about capturing data from the F5 and then transferring the file over to my ftp server to review. Also, these are ssl'ed traffic so was just wondering if how I can view the data.
0
Comment
Question by:LateNaite
1 Comment
 
LVL 65

Accepted Solution

by:
btan earned 1500 total points
ID: 39926143
actually F5 has (need registration) tcpdump and this can be easily achieved by specifying the interface or vlan segment (and of course the port, in this case 21) to create the pcap and then have that "Exported" e.g.

tcpdump -ni 1.1 tcp port 80 -w/var/tmp/http.cap

tcpdump -ni public_vlan tcp port 21 -w/var/tmp/ftp.cap

tcpdump -ni 0.0 udp 1645 -w/var/tmp/all_interfaces_radius.cap

There is (need registration) ssldump

Another mean is using iRule on the high speed logging, pse see this

https://devcentral.f5.com/articles/irules-high-speed-logging-spray-those-log-statements#.UyGmjM6YPj0
0

Featured Post

WatchGuard Case Study: NCR

With business operations for thousands of customers largely depending on the internal systems they support, NCR can’t afford to waste time or money on security products that are anything less than exceptional. That’s why they chose WatchGuard.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
Envision that you are chipping away at another e-business site with a team of pundit developers and designers. Everything seems, by all accounts, to be going easily.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…
Suggested Courses

916 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question