Forum Discussion

Carl_rag

Nimbostratus

Jun 13, 2020

using TCPDUMP to see the selected node

How can I use TCPDUMP to see which node from a pool F5 selects after it receives traffic to a virtual server?

Cirrus

Jun 14, 2020

tcpdump -i 0.0:p host 10.20.1.1 -w /var/tmp/tcpdumps1.pcap

Use the above command. :p indicates peer side. In the above statement, IP address 10.20.1.1 is the Client ip address. Wireshark output will show which node it has selected from Pool.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

using TCPDUMP to see the selected node

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

MAC users unable to access Internet when on Netskope

Could not communicate with the system. Try to reload page.

F5 mssql health monitor failing

DNS Traffic from floating IP to public IP of a VIP

F5 XC 503 upstream_reset_before_response_started{protocol_error}

Related Content

decrypted tcpdump capture without using an iRule and without using tshark

decrypted tcpdump capture without using an iRule using tshark

8. SYN Cookie: Troubleshooting tcpdump

Decrypting TLS with the tcpdump sslprovider

Tcpdump Capture

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS