Avi Networks Technical Reference (17.2)

Similar documents
Configuring IP Logging

Using Flexible NetFlow Top N Talkers to Analyze Network Traffic

Configuring IP Logging

Flexible NetFlow - Top N Talkers Support

Tutorial 9. SOLUTION Since the number of supported interfaces is different for each subnet, this is a Variable- Length Subnet Masking (VLSM) problem.

FortiTester Handbook VERSION 2.4.1

Introduction to Wireshark

VPN Troubleshooting. VPN Troubleshooting CHAPTER20. Tunnel Details

Available Commands CHAPTER

Detecting Server Maintenance Mode with a Health

How to Access and Use Quagga Shell using Avi CLI

FortiTester Handbook VERSION 2.4.0

How to Access and Use Quagga Shell using Avi CLI

Configuring Gigabit Ethernet Interfaces (J-Web Procedure)

IPv6 BGP Peering in Avi Vantage

Chapter 8: Subnetting IP networks. Introduction to Networks v5.1

Using Flexible NetFlow Flow Sampling

Using Flexible NetFlow Flow Sampling

NetFlow Monitoring. NetFlow Monitoring

OSPFv2 Local RIB. Finding Feature Information

Alloc8 How to Guide: Adaptive Response

Cisco Firepower Troubleshoot File Generation Procedures

Lenovo ThinkAgile XClarity Integrator for Nutanix Installation and User's Guide

vcenter Server Appliance Configuration Modified on 17 APR 2018 VMware vsphere 6.7 VMware ESXi 6.7 vcenter Server 6.7

Monitoring Data CHAPTER

IPv6 in Avi Vantage for OpenStack

vsphere Networking Update 1 ESXi 5.1 vcenter Server 5.1 vsphere 5.1 EN

ECMP Support in OpenStack Contrail Environments

Understanding And Using Custom Queries

V Commands. virtual ip, page 2 virtual ipv6, page 5 vrf, page 8. Cisco Nexus 7000 Series NX-OS Intelligent Traffic Director Command Reference 1

Introduction to OSI model and Network Analyzer :- Introduction to Wireshark

Chapter 6 Addressing the Network- IPv4

Monitoring Data CHAPTER

FortiTester Handbook VERSION 2.5.0

Chapter 06 IP Address

Packet Capture (PCAP) Trace

Network Layer PREPARED BY AHMED ABDEL-RAOUF

Using NetFlow Filtering or Sampling to Select the Network Traffic to Track

AppResponse Xpert RPM Integration Version 2 Getting Started Guide

Lab I: Using tcpdump and Wireshark

Configuring Routing CHAPTERS

Utilities. Introduction. Working with SCE Platform Files. Working with Directories CHAPTER

Backup and Restore of Avi Vantage Configuration

Packet Capture Wireshark Fakrul Alam

Client Proxy interface reference

HP High-End Firewalls

How to share a single VIP across multiple virtual services

Network Analyzer :- Introduction to Wireshark

Packet Capture (PCAP) Trace

EXAM TCP/IP NETWORKING Duration: 3 hours

Cisco Traffic Analyzer

libcap_utils Documentation

Cubro Packetmaster EX2 Series

HP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls

vcenter Server Appliance Configuration Update 1 Modified on 04 OCT 2017 VMware vsphere 6.5 VMware ESXi 6.5 vcenter Server 6.5

SANS FORENSIC CHALLENGES REPORT

Lab Using Wireshark to Examine Ethernet Frames

Initiate precision packet captures to analyze zero window conditions

Setting the Management IP Address

LAB THREE STATIC ROUTING

Monitoring Dashboard. Figure 1: Monitoring Dashboard

Conditional Debug and Radioactive Tracing

Configuring IP SLAs LSP Health Monitor Operations

Hardware Compatibility Matrix for Cisco cbr Series Routers

Information About Tracing

AVC Notes, Limitations, and Caveats

Computer Networks Security: intro. CS Computer Systems Security

Table below shows the hardware compatibility prerequisites for this feature.

CCNA Semester 2 labs. Labs for chapters 2 10

Platform Administration

Chapter 13 RIP Commands

DHCP Client. Finding Feature Information. Restrictions for the DHCP Client

Remote Access VPN. Remote Access VPN Overview. Licensing Requirements for Remote Access VPN

FINAL EXAM - SLOT 2 TCP/IP NETWORKING Duration: 90 min. With Solutions

Lab Using Wireshark to Examine Ethernet Frames

VMware vrealize Operations for Horizon Administration

Shortest Path First Example

Tracing Commands. Information About Tracing. Tracing Overview

Using NetFlow Sampling to Select the Network Traffic to Track

Monitoring and Analysis

Running Reports. Choosing a Report CHAPTER

Chapter 7. ARP and RARP MGH T MGH C I 20

Design Guide for Cisco ACI with Avi Vantage

Configure Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) Service Settings on a Switch

Running the Setup Web UI

Network Management & Monitoring

Backing Up and Restoring the Configuration

Getting Started. About the ASA for Firepower How the ASA Works with the Firepower 2100

Cisco NSH Service Chaining Configuration Guide

Delete an SNMP community name by entering this command:

Effective with Cisco IOS Release 15.0(1)M, the ssg default-network command is not available in Cisco IOS software.

Running Reports CHAPTER

NfSen and NFDUMP 16th TF-CSIRT Meeting Sept 15th 2005, Lisbon Peter Haag

Command Line Reference

Access Switch VLAN Y Y.1 /24

Configuring NetFlow. Information About NetFlow. What is a Flow. This chapter contains the following sections:

EdgeXOS Platform QuickStart Guide

ACL Compliance Director Tutorial

Configuring IP Services

Advanced Computer Networking. CYBR 230 Jeff Shafer University of the Pacific. Project 2

Transcription:

Page 1 of 5

Packet Capture view online Most troubleshooting of connection or traffic data may be done quickly via virtual service logs. However, some troubleshooting may require full visibility into the packet transmission. Vantage provides a packet capture feature, which runs TCPdump against a designated virtual service. Virtual services may exist on a single Avi Service Engine (SE) or may be scaled out across multiple active Avi SEs. Traffic captures will automatically be executed on all Avi SEs actively handling traffic for the virtual service. Once the captures are complete, the Avi SEs forward their pcap files to the Controller, which aggregates and sorts the data into a single file containing client and server sides of Vantage. Capture Configuration The following sections describe how to configure and start a packet capture. Note: It is highly recommended to set a limit to the duration of the capture. This limit may be either the maximum number of packets to receive, or the duration of time, in minutes. Once the limit has been reached, the capture will terminate and be sent to the Avi Controller for processing and should be available shortly after. Web Interface Navigate to Operations > Traffic Capture. The Capture Configuration section shows the parameters defined for any captures that are currently in progress. To begin a new capture, select the edit icon on the right of the box. Select Virtual Service: The capture is executed against traffic for a virtual service. The capture includes both the client-to-se and SE-to-server sides of the connection. It will automatically be performed on all Avi SEs handling traffic for the virtual service. Filter to Capture All Traffic: Captures all traffic. Copyright 2018 Avi Networks, Inc. Page 2 of 5

Choose Client IP, IP Range, Subnet Mask: Captures traffic only for the specified IP address, list or range of IP addresses, or subnet. The IP addresses can be client or server addresses. To specify a list, use a space between each address. For example: 10.1.1.1 10.1.1.99 192.168.8.200 To specify a range, use the following format: 10.1.1.1-10.1.1.255 To specify a subnet, use the following format: 10.1.1.1/24. Number of Packets: Maximum number of packets to capture, per core. Duration: Number of minutes during which to capture packets. Size of Packets: Number of bytes to capture per packet. This is similar to the snaplen option in TCPdump. To capture entire packets, enter 0. Advanced Settings Health Monitor Options: Indicates whether to capture packets from health checks. None: Excludes health monitoring traffic (the default) Include: Includes health monitoring traffic Only: Captures only health monitoring traffic Note: If 'Include' or 'Only' are selected, then Avi Vantage will capture all SE health monitor traffic for the SEs in which the VS is hosted, including other VS/pool health monitor traffic. When the capture is started, the Capture Configuration section indicates the progress of the capture. Once the capture is complete, it may still take a few minutes for the new capture to show up in the Completed Captures, as the Avi Controller may need to collate data from multiple Avi SEs and format the data, which is output as a pcap file. Completed Captures Once a traffic capture has completed, it will show in the Completed Captures table. This table shows the date, virtual service name and size. The far right column of the table contains an export icon, which allows administrators to download the pcap file. This file type can be viewed by common traffic capture utilities such as Wireshark. Packet Capture Via CLI To capture packets via the CLI, log into the Vantage CLI shell, then enter the packet capture sub-mode for the desired virtual service: debug virtualservice Test-virtual service Updating an existing object. Currently, the object is: Field Value uuid virtualservice-0-1 name Test-virtual service Parameters may be defined for the packet capture. By default, the capture is performed within the context of the selected virtual service. It is also performed on all Avi SEs that are handling the virtual service traffic, and includes the packets from the client and server side of the Avi SE. capture_params duration capture_params num_pkts capture_params pkt_size Time, in minutes. Default is unlimited. Maximum number of packets to collect. Default is unlimited. Packet size, or snap length, to capture. Default is unlimited. Copyright 2018 Avi Networks, Inc. Page 3 of 5

debug_ip addrs debug_ip prefixes IPv4 Address format IPv4 Prefix format <x.x.x.x/x> debug_virtual service_hm_include Include health monitor packets in the capture debug_virtual service_hm_none debug_virtual service_hm_only Omit health monitor packets from the capture (the default) Capture only health monitor packets The debug_ip command enters a sub-mode. This allows multiple IP addresses or IP subnets to be entered. (Omit the debug_ip option for for subsequent entries.) Save to commit the desired IPs and return to the previous menu. Warning: By default, no maximum packets or duration of time to be captured are defined. It is recommended to include a maximum packet capture as shown in the following example. Without a limit, the capture will run until filling the Avi SE drive, potentially disrupting service. Specify parameters, including the maximum number of packets to capture: debugvirtualservice> capture_params num_pkts 1000 debugvirtualservice> debug_ip addrs 10.10.10.10 debugvirtualservice:debug_ip> save Begin capturing based on the previously configured parameters: debugvirtualservice> capture debugvirtualservice> save Field Value uuid virtualservice-0-1 name Test-VS debug_ip addrs[1] 10.10.10.10 capture True capture_params duration 0 mins num_pkts 1000 Re-enter the packet capture sub-mode and stop an ongoing packet capture: debug virtualservice Test-virtual service debugvirtualservice> no capture debugvirtualservice> save Export the packet capture to a remote system that can view it via a tool such as TCPdump or Wireshark: Copyright 2018 Avi Networks, Inc. Page 4 of 5

show debug virtualservice Test-virtual service capture Please specify the destination directory: /tmp Downloaded the attachment to /tmp/virtual service_virtualservice.20141205_192033.pcap bash scp /tmp/virtual service_virtualservice.192033.pcap user@10.1.1.1:/tmp Copyright 2018 Avi Networks, Inc. Page 5 of 5

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback