Cisco Systems 1000 Series Network Router User Manual

Open as PDF

of 702

21-9

Cisco ASR 1000 Series Aggregation Services Routers Software Configuration Guide

OL-16506-17

Chapter 21 Packet Trace

Configuration Examples for Packet Trace

Router# debug platform packet-trace packet 2048 summary-only

Router# debug platform condition start

Router# debug platform condition stop

Router# show platform packet-trace summary | include DROP

403 Gi0/0/0 --- DROP 064.NatIn2Out

781 Gi0/0/0 --- DROP 064.NatIn2Out

1708 Gi0/0/0 --- DROP 064.NatIn2Out

The output shows that packets are dropped due to NAT configuration on Gigabit Ethernet interface 0/0/0,

which enables you to understand that an issue is occurring on a specific interface. Using this information,

you can limit which packets to trace, reduce the number of packets for data capture, and increase the

level of inspection.

Router# debug platform packet-trace enable

Router# debug platform packet-trace packet 256

Router# debug platform packet-trace copy packet input size 32 L3

Router# debug platform condition interface Gi0/0/0

Router# debug platform condition start

Router# debug platform condition stop

Router# show platform packet-trace summary | include DROP

14 Gi0/0/0 --- DROP 064.NatIn2Out

Router# show platform packet-trace 14

Packet: 14 CBUG ID: 17

Summary

Input : GigabitEthernet0/0/0

Output : ---

State : DROP 064.NatIn2Out

Timestamp: 1123438869354000

Path Trace

Feature: IPv4

Source : 10.1.1.1

Destination : 64.102.6.247

Protocol : 17 (UDP)

Feature: NAT

Direction : IN to OUT

Action : Drop

Sub-code : 027 - NON_PATTABLE

Feature: DROP

Code: 064.NatIn2Out

Packet Copy In

45000040 00020000 3C11E030 0A010101 406606F7 046D0035

From the show command output, you can see that there is some traffic that cannot be configured for Port

Address Translation (PAT). Hence, you should modify the ACL to spare this traffic from NAT

configuration, or disable the service for that kind of traffic. From the copy of the incoming packet, you

can see that the protocol is UDP, and the destination port is DNS, and that you should turn off the DNS

Application Layer Gateway (ALG).

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems 1000 Series Network Router User Manual