Which configuration would you use to enable this capture?

HostA (1.1.1.1) is sending TCP traffic to HostB (2.2.2.2). You need to capture the TCP
packets locally on the SRX240. Which configuration would you use to enable this capture?

HostA (1.1.1.1) is sending TCP traffic to HostB (2.2.2.2). You need to capture the TCP
packets locally on the SRX240. Which configuration would you use to enable this capture?

A.
[edit firewall filter capture term one] user@srx# show from { source-address { 1.1.1.1; }
destination-address { 2.2.2.2; } protocol tcp; } then { sample; accept; }

B.
[edit firewall filter capture term one] user@srx# show from { source-address { 1.1.1.1; }
destination-address { 2.2.2.2; } protocol tcp; } then { port-mirror; accept; }

C.
[edit security] user@srx# show application-tracking { enable; } flow { traceoptions { file
dump; flag basic-datapath; } }

D.
[edit security flow] user@srx# show traceoptions { file dump; flag basic-datapath; }

Show Hint

Leave a Reply 0

Your email address will not be published. Required fields are marked *