A great debugging tool feature on the Juniper Netscreens is snoop. Snoop is packet capturing tool which allows you to analysis your traffic on a per packet level.
Below shows you a example of enabling snoop and viewing its output,
5gt->undebug all
5gt->snoop
5gt->snoop filter ip 10.1.1.100
5gt->snoop info
5gt->clear db
5gt->get db str
Ok, so what do these commands actually do ?
- undebug all = clears all previous debug settings
- snoop = enables snoop
- snoop filter ip 10.1.1.100 = creates a snoop filter for ip 10.1.1.100
- snoop info = shows snoop info, such as wether snoop is enabled and if the filter is turned on.
- clear db = clears the debug buffer
- get db str = shows the debug buffer stream
Further information can be found at these links,
- How do you use Snoop for troubleshooting?
- What options are available when configuring snoop?
- Following a packet using Snoop
- Understanding how to apply logical AND or OR snoop filters ?
Rick Donato is a Network Automation Architect/Evangelist and the founder of Packet Coders.
Latest posts by Rick Donato (see all)
- How to Configure a BIND Server on Ubuntu - March 15, 2018
- What is a BGP Confederation? - March 6, 2018
- Cisco – What is BGP ORF (Outbound Route Filtering)? - March 5, 2018
Want to become an IT Security expert?
Here is our hand-picked selection of the best courses you can find online:
Internet Security Deep Dive course
Complete Cyber Security Course – Hackers Exposed
CompTIA Security+ (SY0-601) Certification Complete course
and our recommended certification practice exams:
AlphaPrep Practice Tests - Free Trial