青炎灯 2007-11-9 10:22
Juniper防火墙命令行查错工具snoop的使用
[size=12px][b]1. 先设置过滤列表,使得防火墙只对需要的数据包进行分析. 即snoop filter命令:
[/b]ns208-> snoop filter ?
delete delete snoop filter
ethernet snoop specified ethernet
id snoop filter id
ip snoop ip packet
off turn off snoop filter
on turn on snoop filter
tcp snoop tcp packet
udp snoop udp packet
ns208-> snoop filter ip ?
<return>
direction snoop direction
dst-ip snoop filter dst ip
dst-port snoop filter dst port
interface interface name
ip-proto snoop filter ip proto
port src or dst port
src-ip snoop filter src ip
src-port snoop filter src port
<IPv4 Address> IPv4 Address
offset ip offset
ns208-> snoop info
Snoop: OFF
Filters Defined: 2, Active Filters 2
Detail: OFF, Detail Display length: 96
Snoop filter based on:
id 1(on): IP dir(I)
id 2(on): IP dst-ip 172.27.68.1 dir(B)
[b]2. 开启snoop 进行抓包**** Hidden Message *****
[b]6. 清除防火墙的snoop过滤设置
[/b]ns208-> snoop filter delete
All filters removed[/size]
athlonzhang 2007-11-9 15:27
看看先
多谢分享,值得学习!
vincent1022 2008-4-15 23:09
gggggggggggai-^p:
tianya8970 2008-4-22 10:52
hoho,谢谢楼主。。。。。。。。。
绯村飞飞 2008-4-24 14:25
好东西le!#sia le!#sia le!#sia
conquer 2008-4-26 12:40
看看,学习学习..................
gllml2008 2008-4-29 16:37
回复 1# 的帖子
好东西!要看看~12+
micro 2008-5-9 00:05
ssssss eeeeee eeeeee
ai-^p:
