Difference between revisions of "Fw monitor"

From cpwiki.net
Jump to: navigation, search
Check Point Profressional Services
(Pushed from Themanclub.)
 
Line 1: Line 1:
 
'''4 chain, all bidirectional traffic between 2 hosts'''
 
'''4 chain, all bidirectional traffic between 2 hosts'''
 
  fw monitor -m iIoO -e "accept src=192.168.1.1 and dst=10.0.0.1; accept src=10.0.0.1 and dst=192.168.0.1;"  
 
  fw monitor -m iIoO -e "accept src=192.168.1.1 and dst=10.0.0.1; accept src=10.0.0.1 and dst=192.168.0.1;"  
 +
'''capture icmp packets only from host x'''
 +
fw monitor -m iIoO -e "ip_p=1,host(192.168.1.1), accept;"
  
  
 
[[category:check point]]
 
[[category:check point]]

Revision as of 19:30, 6 July 2013

4 chain, all bidirectional traffic between 2 hosts 

fw monitor -m iIoO -e "accept src=192.168.1.1 and dst=10.0.0.1; accept src=10.0.0.1 and dst=192.168.0.1;"

capture icmp packets only from host x 

fw monitor -m iIoO -e "ip_p=1,host(192.168.1.1), accept;"
Retrieved from "http://www.cpwiki.net/index.php?title=Fw_monitor&oldid=160"