Help Center/ Cloud Firewall/ User Guide/ System Management/ Network Packet Capture/ Creating a Packet Capture Task
Updated on 2024-01-12 GMT+08:00
View PDF

Creating a Packet Capture Task

You can create network packet capture tasks to locate network faults and attacks.

Specification Limitations

Only the professional edition instances can capture network packets.

Constraints

  • Only one packet capture task can be executed at a time.
  • A maximum of 20 packet capture tasks can be created every day.
  • A maximum of 1 million packets can be captured.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. In the navigation pane, click and choose Security & Compliance > Cloud Firewall. The Dashboard page will be displayed, as shown in Figure 1.

    Figure 1 CFW Dashboard

  4. (Optional) If the current account has only one firewall instance, the firewall details page is displayed. If there are multiple firewall instances, click View in the Operation column to go to the details page.
  5. In the navigation tree on the left, choose System Management > Packet Capture.
  6. Click Create Capture Task and configure parameters.

    Figure 2 Creating a packet capture task
    Table 1 Packet capture task parameters

    Parameter Name

    Description

    Example Value

    Task Name

    Task name.

    It must meet the following requirements:
    • Only uppercase letters (A to Z), lowercase letters (a to z), numbers (0 to 9), and the following special characters are allowed: -_
    • Enter up to 30 characters.

    cfw

    Max. Packets Captured

    Maximum number of captured packets. Enter an integer in the range 1 to 1,000,000.

    100000

    Capture Duration (min)

    Maximum duration for capturing packets. Enter an integer in the range 1 to 10.

    3

    Protocol Type

    Protocol type of captured packets. It can be:

    • Any
    • TCP
    • UDP
    • ICMP

    Any

    Source Address
    It can be:
    • A single IP address, for example, 192.168.10.5
    • Consecutive IP addresses, for example, 192.168.0.2-192.168.0.10
    • Address segment, for example, 192.168.2.0/24

    192.168.10.5

    Source Port

    (Optional) Source port.

    The input rules are as follows:
    • If this parameter is left blank, it indicates all port numbers (1 to 65535).
    • Enter a single port number in the range 1 to 65535.

    80

    Destination Address
    It can be:
    • A single IP address, for example, 192.168.10.5
    • Consecutive IP addresses, for example, 192.168.0.2-192.168.0.10
    • Address segment, for example, 192.168.2.0/24

    192.168.10.6

    Destination Port

    (Optional) Destination port.

    The input rules are as follows:
    • If this parameter is left blank, it indicates all port numbers (1 to 65535).
    • Enter a single port number in the range 1 to 65535.

    -

  7. Click OK.

Related Operations

  • To copy a task, click Copy in its Operation column. In the displayed dialog box, enter the task name and click OK.
  • To stop a packet capture task, click Stop in its Operation column.
  • To delete packet capture tasks, select them and click Delete above the list.
  • Viewing a Packet Capture Task
  • Downloading Packet Capture Results
Parent topic: Network Packet Capture