F5 Traffic Capturing

I was just wondering how I can go about capturing data from the F5 and then transferring the file over to my ftp server to review. Also, these are ssl'ed traffic so was just wondering if how I can view the data.
LateNaiteAsked:
Who is Participating?
 
btanConnect With a Mentor Exec ConsultantCommented:
actually F5 has (need registration) tcpdump and this can be easily achieved by specifying the interface or vlan segment (and of course the port, in this case 21) to create the pcap and then have that "Exported" e.g.

tcpdump -ni 1.1 tcp port 80 -w/var/tmp/http.cap

tcpdump -ni public_vlan tcp port 21 -w/var/tmp/ftp.cap

tcpdump -ni 0.0 udp 1645 -w/var/tmp/all_interfaces_radius.cap

There is (need registration) ssldump

Another mean is using iRule on the high speed logging, pse see this

https://devcentral.f5.com/articles/irules-high-speed-logging-spray-those-log-statements#.UyGmjM6YPj0
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.