Capturing and Tracing Network Packets by Using the pktcap-uw Utility on Skyline Collector
Article ID: 317575
Updated On:
Products
VMware
Issue/Introduction
Monitor the traffic that flows through Skyline Collector and analyze packet information by using the graphical user interface of network analysis tools such as Wireshark.
For a detailed analysis of captured packets, you can save packet content from the pktcap-uw utility to files in PCAP or PCAPNG format and open them in Wireshark. You can also troubleshoot dropped packets and trace a packet's path in the network stack.
Prerequisites:
Please create a snapshot on the Skyline Collector virtual machine, before performing any steps mentioned to generate packet capture.
For a detailed analysis of captured packets, you can save packet content from the pktcap-uw utility to files in PCAP or PCAPNG format and open them in Wireshark. You can also troubleshoot dropped packets and trace a packet's path in the network stack.
Prerequisites:
Please create a snapshot on the Skyline Collector virtual machine, before performing any steps mentioned to generate packet capture.
Resolution
Follow these steps to install tcpdump and generate Packet Capture
curl+60:Peer certificate cannot be authenticated with given CA certificates Download error: 1261. Retrying”
tdnf -y install tcpdum
Execute the below command to generate Packet Capture on Skyline Collector appliance
tcpdump -i eth0 udp port 443 ( tcpdump -i eth0 udp port 443 -w /tmp/collector.pcap)
- Using the vSphere Client, open the remote console of the Skyline Collector virtual appliance.
- Log in to the console of the Skyline Collector virtual appliance with user 'root'.
- Command to remove package “photon_vasecurity”
- If you receive an error when we execute the command tdnf remove photon_vasecurity there is error
curl+60:Peer certificate cannot be authenticated with given CA certificates Download error: 1261. Retrying”
- Check if the Collector is configured with a Proxy Server, if yes you would first have to insert the proxy certificates into the PhotonOS Cert Store
- Please follow the steps in the KB to insert the proxy certificates into the PhotonOS Cert Store - https://kb.vmware.com/s/article/82118
- Command to install tcpdump
tdnf -y install tcpdum
Execute the below command to generate Packet Capture on Skyline Collector appliance
tcpdump -i eth0 udp port 443 ( tcpdump -i eth0 udp port 443 -w /tmp/collector.pcap)
Feedback
Yes
No
Powered by
