Junos OS

IMPORTANT MODERATION NOTICE

This community is currently under full moderation, meaning  all posts will be reviewed before appearing in the community. Please expect a brief delay—there is no need to post multiple times. If your post is rejected, you'll receive an email outlining the reason(s). We've implemented full moderation to control spam. Thank you for your patience and participation.



Expand all | Collapse all

Traffic Sniffing Post Decrypt (IKE)

  • 1.  Traffic Sniffing Post Decrypt (IKE)

    Posted 06-09-2021 16:46
    It may depend on platform, but is there a technique to sniff IKE control traffic, destined for the RE on the local device (with tcpdump or 'monitor traffic') after it has been decrypted?


  • 2.  RE: Traffic Sniffing Post Decrypt (IKE)

    Posted 08-02-2021 19:00
    Yes, you can capture this traffic as it is encapsulated in UDP port 500, therefore create a monitor for this traffic and you can catch it towards the RE.

    Elvin