To monitor Traffic using TCPDUMP utility from the CLI console, refer article Monitor Packet Flow in Cyberoam using CLI console.
Capture, Analyse and Filter incoming and outgoing packets on port 80 using Packet Capture utility.
You can capture packets by following the steps below.
Go to System > Diagnostics > Packet Capture and click Configure to configure the Capture Filter according to parameters given below.
Number of Bytes to Capture (per packet)
Specify the number of bytes to be captured per packet.
Wrap Capture Buffer Once Full
If enabled once the buffer is full, previous data is overwritten.
Enter BPF String
Specify BPF string
BPF (Berkeley Packet Filter) sits between link-level driver and the user space. BPF is protocol independent and use a filter-before-buffering approach. It includes a machine abstraction to make the filtering efficient. For example, host 192.168.1.2 and port 137
Refer to BPF String Parameters given below for filtering specific packets.
Step 2: Capture Packets
Click on any packet to analyse it, as shown below. The details of the selected packet are displayed in the Packet Information section.
You also obtain all packet information in Hexadecimal and ASCII values from the Hex & ASCII Detail section. This information can be used to determine the nature of the traffic, or why packets are dropped or rejected.
If you want to view only certain packets, you can filter them out using the Packet Filter.ClickDisplay Filterand specify filter criteria as given in the table below.
Select the physical interface from the list for filtering packets log.
Select the Ethernet Type: IP or ARP.
EtherType is a field in an Ethernet frame. It is used to indicate the protocol encapsulated in the Ethernet frame.
Select the packet type used from the list for filtering packets.
Specify SourceIP Address of the Packet
Document Version: 2.2 – 14 October, 2014
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.