How do I generate a pcap to validate incoming data to an MTP or VMTP?
MTP and VMTP all versions
1. Open an ssh session to MTP.
2. Use the command below to see the usage for the buildpcap command.
3. The required options are:
--feed , meaning the port receiving the data
--output-file which is the file its writing the data to
4. You can use the example command below to generate a pcap that will filter to a specific server IP address.
Make sure to change the start-datatime and end-datetime to a recent short time period as the files will be very large.
/opt/NetQoS/bin/buildpcap --feed 0 --start-datetime 20190816-10:00:00 --end-datetime 20190816-11:00:00 --filter-server-address x.x.x.x --filter-server-port 80 --output-file /tmp/buildpcap.pcap