Skip to main content

Cisco ASA Packet Capture

!Define filter
conf t
access-list cap extended permit ip host 10.10.9.1 any4
access-list cap extended permit ip host 10.10.9.11 any4
access-list cap extended permit ip host 10.63.56.2 any4
access-list cap extended permit ip any4 host 10.10.9.1
access-list cap extended permit ip any4 host 10.10.9.11
access-list cap extended permit ip any4 host 10.63.56.2
end
!

!Start
capture capin interface inside access-list cap
capture capout interface outside access-list cap
!

!View
show cap capin
show cap capout
!

!Stop
no cap capin
no cap capout
!

!Cleanup filter
conf t
no access-list cap extended permit ip host 10.10.9.1 any
no access-list cap extended permit ip host 10.10.9.11 any
no access-list cap extended permit ip host 10.63.56.2 any
no access-list cap extended permit ip any host 10.10.9.1
no access-list cap extended permit ip any host 10.10.9.11
no access-list cap extended permit ip any host 10.63.56.2
end
!