{"id":38,"date":"2012-07-26T10:36:00","date_gmt":"2012-07-26T08:36:00","guid":{"rendered":"https:\/\/test.n3oxid.fr\/?p=38"},"modified":"2021-04-18T21:14:54","modified_gmt":"2021-04-18T19:14:54","slug":"capture-et-analyse-du-trafic-sur-un-juniper-srx-650","status":"publish","type":"post","link":"https:\/\/www.n3oxid.fr\/?p=38","title":{"rendered":"Capture et analyse du trafic sur un Juniper SRX 650"},"content":{"rendered":"\n

Mise en place de la capture sur le pare-feu<\/h2>\n\n\n\n
$ cli\n> configure\n> set forwarding-options packet-capture file filename MyCapture files 10\n> set forwarding-options packet-capture maximum-capture-size 1500\n> set firewall filter MyFilter term capture from source-address <address\/wildcard>\n> set firewall filter MyFilter term capture from destination-address <address\/wildcard>\n> set firewall filter MyFilter term capture from protocol <protocol>\n> set firewall filter MyFilter term capture then sample\n> set firewall filter MyFilter term capture then accept\n> set firewall filter MyFilter term allow-all-else then accept\n> set interfaces <interface> unit <vlan> family inet filter input MyFilter\n> commit\n<\/pre>\n\n\n\n
Retrait de la capture sur le pare-feu<\/h2>\n\n\n\n
> delete interfaces <interface> unit <vlan> family inet filter input MyFilter delete firewall filter MyFilter delete forward-options packet-capture<\/pre>\n\n\n\n
Transfert et analyse de la capture<\/h2>\n\n\n\n
R\u00e9cup\u00e9ration des fichiers de capture (MyCapture.<interface>) se trouvant sous \/var\/tmp\/ via un client SFTP. Ouverture des fichiers via le client Wireshark<\/p>\n","protected":false},"excerpt":{"rendered":"
Mise en place de la capture sur le pare-feu $ cli > configure > set forwarding-options packet-capture file filename MyCapture files 10 > set forwarding-options packet-capture maximum-capture-size 1500 > set …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[24,25,26,28,29],"class_list":["post-38","post","type-post","status-publish","format-standard","hentry","category-computing","tag-capture","tag-firewall","tag-juniper","tag-srx","tag-wireshark"],"_links":{"self":[{"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=\/wp\/v2\/posts\/38","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=38"}],"version-history":[{"count":1,"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=\/wp\/v2\/posts\/38\/revisions"}],"predecessor-version":[{"id":39,"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=\/wp\/v2\/posts\/38\/revisions\/39"}],"wp:attachment":[{"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=38"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=38"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.n3oxid.fr\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=38"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}