Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [PEN-TEST] ios/cisco packet sniffer...

From: "Beauregard, Claude Q" <CQBeauregard () AAAMICHIGAN COM>
Date: Mon, 27 Nov 2000 10:25:09 -0500
You may also want to look at a tool called Solarwinds. It's great for
obtaining the encrypted password for router access. It also has a config
viewer for extracting the running config from a router. - Nice tool -

http://www.solarwinds.net

-----Original Message-----
From: Penetration Testers [mailto:PEN-TEST () SECURITYFOCUS COM]On Behalf
Of Joe Hacker
Sent: Friday, November 24, 2000 3:59 PM
To: PEN-TEST () SECURITYFOCUS COM
Subject: Re: [PEN-TEST] ios/cisco packet sniffer...


I couldn't see this in the thread, only a bunch of links to various pages,
and since I
am off-line at the moment (and probably WAAAY behind reading this...), I
leave it
to the moderator to approve the post.

One good way to do a packet dump on a Cisco is:

        router(config)#access-list 199 permit ip <source> <mask>
<destination> <mask>
        router(config)#access-list 199 permit ip <destination> <mask>
<source> <mask>
        router(config)#end
        router# debug ip packet 199 dump

E.g.

        access-list 199 permit ip host 192.168.0.1 any
        access-list 199 permit ip any host 192.168.0.1

Will dump packets destined to and from 192.168.0.1.

I included the list, since debugging at packet level can cause the router
to reload if there is a lot
of traffic.

-j0e
Previous By Date Next
Previous By Thread Next

Current thread: