Title: How to Perform Packet Obtaining on the RG-WALL Z Series Firewalls [Print this page] Author: zhangqiao@ruiji Time: 2024-8-22 11:36 Title: How to Perform Packet Obtaining on the RG-WALL Z Series Firewalls Application Scenarios
The web interface includes a packet capture feature. When software issues occur, administrators can use packet capture tools to assist R&D engineers in diagnosing the problem. These tools collect network data packets and save them to files. By analyzing these packets, R&D engineers can quickly identify and resolve software faults. Configuration Procedure
1.Choose System > Fault Diagnosis > Packet Obtaining Tool.
2. ClickStart.
3. Set packet obtaining options. Interface: Select a physical port or sub-interface for packet obtaining. Layer 2 protocol:
○ When any is selected, you need to enter the source and/or destination MAC address. If only one MAC address is specified(either source or destination), only packets with that MAC address will becaptured. If both source and destination MAC addresses are provided, all packets exchanged between these two addresses will be captured.
○ When ARP is selected, only ARP packets will be captured. You need to enter the source and/or destination MAC address. If only one MAC address is specified (either source or destination), only ARP packets with that MAC address will be captured. If both source and destination MAC addresses are provided, all ARP packets exchanged between these two addresses will be captured.
○ When IP is selected, you can continue to select any, TCP, or UDP for the Layer3 protocol.
Source options (Src. MAC, Src. IP, or Src. Port) and destination options (Dest. MAC or Dest. Port) are available. If only source or destination options are specified, packets with the specified source or destination will be captured. If both source and destination options are specified, all packets matching the given source or destination criteria will be captured.
Example1
All UDP packets passing through port Ge0/0 with a source or destination address of192.168.1.1 are captured.
Example2
All TCP packets passing through interface Ge0/0 with a source IP address of 192.168.1.1 and destination IP address of 192.168.23.100:80, or with a source IP address of 192.168.23.100 and destination IP address of 192.168.1.1, are captured.
Follow-up
After packet capture is complete, download the results to your PC and use tools like Wireshark to open and analyze them.
Welcome to Ruijie Community (https://community.ruijienetworks.com/)
