Forum Discussion

Cirrus

Feb 05, 2025

Strange phenomenon seen in the tcpdump

Hi All, I grabbed a packet to find out the cause because there was a service outage, and I found that the connection is not connected to any virtual server, and the port is 0.67, but obviously th...

application delivery

boneyard

MVP

Feb 08, 2025

I understand the lack of understanding and don't have a direct answer.

I would look further, try looking at another virtual server, how does the tcpdump output look there.

Double check the IP address, try with the source instead of the destination. This looks like FTP, perhaps an FTP profile is somehow involved?

And of course if you have a support contract reach out to F5 support, they can look at your full configuration and that makes things easier.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Strange phenomenon seen in the tcpdump

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

BIG-IP methods to Fix the “421 Misdirected Request” Error

Caching based on Surrogate-Control header

SSL Orchestrator and Layer 2 Service Integration

4600 rSeries tenant resizing and HA Dependency

DOSl7 reset learning database voor automatic mode

Related Content

8. SYN Cookie: Troubleshooting tcpdump

Decrypting TLS with the tcpdump sslprovider

Tcpdump Capture

tcpdump portrange option

Packet Analysis with Scapy and tcpdump: Checking Compatibility with F5 SSL Orchestrator

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS