Fortinet black logo

CLI Reference

config system tcpdump

config system tcpdump

This configuration is for the tcpdump utility in the Web UI. The configuration saves TCP dump commands and filter expressions so that they can be re-run from the Web UI. The CLI supports its own tcpdump service. See execute packet-capture/packet-capture6.

Before you begin:

  • You must have read-write permission for system settings.

Syntax

config system tcpdump

edit <No.>

set host <ip&netmask>

set interface <datasource>

set logtraffic {enable|disable}

set max-packet-count <integer>

set port <integer>

set protocol {arp icmp tcp udp}

set specified-protocol {enable|disable}

set status {enable|disable}

end

host

IP address for the interface used for tcpdump.

interface

Interface to use for tcpdump.

logtraffic

Enable/disable event logs about using tcpdump.

max-packet-count

Maximum number of packets to capture.

port

Port to use for tcpdump.

protocol

Specify the protocol traffic to capture.

specified-protocol

Enable/disable the protocol option.

status

Enable/disable the configuration.

Example

FortiADC-VM # config system tcpdump

FortiADC-VM (tcpdump) # edit 1

Add new entry '1' for node 2725

FortiADC-VM (1) # set interface port1

FortiADC-VM (1) # set status enable

FortiADC-VM (1) # set max-packet-count 5

FortiADC-VM (1) # end

FortiADC-VM # get system tcpdump 1

interface : port1

status : enable

logtraffic : enable

ipv6 : disable

host :

port :

specified-protocol : disable

max-packet-count : 5

config system tcpdump

This configuration is for the tcpdump utility in the Web UI. The configuration saves TCP dump commands and filter expressions so that they can be re-run from the Web UI. The CLI supports its own tcpdump service. See execute packet-capture/packet-capture6.

Before you begin:

  • You must have read-write permission for system settings.

Syntax

config system tcpdump

edit <No.>

set host <ip&netmask>

set interface <datasource>

set logtraffic {enable|disable}

set max-packet-count <integer>

set port <integer>

set protocol {arp icmp tcp udp}

set specified-protocol {enable|disable}

set status {enable|disable}

end

host

IP address for the interface used for tcpdump.

interface

Interface to use for tcpdump.

logtraffic

Enable/disable event logs about using tcpdump.

max-packet-count

Maximum number of packets to capture.

port

Port to use for tcpdump.

protocol

Specify the protocol traffic to capture.

specified-protocol

Enable/disable the protocol option.

status

Enable/disable the configuration.

Example

FortiADC-VM # config system tcpdump

FortiADC-VM (tcpdump) # edit 1

Add new entry '1' for node 2725

FortiADC-VM (1) # set interface port1

FortiADC-VM (1) # set status enable

FortiADC-VM (1) # set max-packet-count 5

FortiADC-VM (1) # end

FortiADC-VM # get system tcpdump 1

interface : port1

status : enable

logtraffic : enable

ipv6 : disable

host :

port :

specified-protocol : disable

max-packet-count : 5