SRX 上抓取封包

如果遇到 SRX上要抓取封包 不會用 tcpdump 怎辦? 可以使用下列指令來抓封包看 # 設定 抓取名稱為 tcpdumpacktrace set security flow tcpdumpacktrace file flow-trace set security flow tcpdumpacktrace flag basic-datapath set security flow tcpdumpacktrace packet-filter f0 source-prefix 192.168.1.129/32 set security flow tcpdumpacktrace packet-filter f0 destination-prefix 192.168.1.51/32 # 確認 修改設定範圍 show | compare # 確認執行設定 commit and-quit # 查看封包 srx240> show configuration security flow srx240> show log flow-trace # # once you have completed this you can turn off the tcpdumpacktrace as follows # #刪除 抓取封包設定 delete security flow tcpdumpacktrace # 確認 修改設定範圍 show | compare # 確認執行設定 commit