TCP dump view

It would greatly help to have TCPDUMP capabilities in load-balancers where a user can activate a shortlived TCPDUMP session with filter e.g. source IP address and allow to troubleshoot connectivity issues with clients.


This request is based on an issue identified with a specific android device where no request logs or security logs were generated due to TCP/TLS issues with the initial connection and lack of root access to the end device.

  • Konstantinos Betsis
  • Dec 5 2023
  • Attach files
  • DeVon Jarvis commented
    11 Jun 17:53

    We need to be able to get packet captures from RE's for troubleshooting. Getting an SRE on the phone (as it required now) is very cumbersome, and ineffective.

    I understand that the filter must have one of the IP's from our tenant, as to not be able to see other's traffic.

    Also, like on the F5 TMOS, we need a way to capture the TLS keys for decryption, like "--f5 ssl" flag on TMOS tcpdump command.

  • Nikolay Dimitrov commented
    February 08, 2024 21:11

    Having the ability to do tcpdumps even on a RE hosted HTTP LB will really be helpful as the Customer Edges have this option. Maybe have some 200MB tenant space where to save the tcpdump will be enough.