If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?

An administrator wants to capture ESP traffic between two FortiGates using the built-in sniffer.

If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?
A . diagnose sniffer packet any ‘udp port 500’
B . diagnose sniffer packet any ‘udp port 4500’
C . diagnose sniffer packet any ‘esp’
D . diagnose sniffer packet any ‘udp port 500 or udp port 4500’

Answer: C

Explanation:

Capture IKE Traffic without NAT:diagnose sniffer packet ‘host and udp port 500’―――――――――――――――――――――――――――――――――――――-Capture ESP Traffic without NAT:diagnose sniffer packet any ‘host and esp’―――――――――――――――――――――――――――――――――――――-Capture IKE and ESP with NAT-T:diagnose sniffer packet any ‘host and (udp port 500 or udp port 4500)’

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments