
Cisco’s Embedded Packet Capture (EPC) allows us to capture packets that flow to, through or from a router.  It is an integrated feature on Cisco IOS devices and can be fully used and leveraged via the CLI of the device.

Captures are stored in the DRAM on the router itself.  A summary or even a detailed view of the captured packets can be viewed.  Because the DRAM is limited in size, packet captures are generally small in size, and will be erased after a reload of the device.

It is possible to export these packet captures to an external server as a packet capture (PCAP) file to be further analyzed using tools such as [Wireshark](/wireshark).

EPC is a quick alternative to creating a comparatively elaborate setup with SPAN or RSPAN since no additional configurations are necessary.

## Links

https://forum.networklessons.com/t/cisco-embedded-packet-capture-epc/1206/34?u=lagapides

https://networklessons.com/cisco/ccie-enterprise-infrastructure/cisco-embedded-packet-capture-epc

EPC - Cisco Embedded Packet Capture

EIGRP - Metric Equation Multipliers

EIGRP - Network command syntax

EIGRP - Queries

EIGRP - RTP's reliable message exchange process

EIGRP - Reliable Multicast

EIGRP - Router ID and loop prevention

EIGRP - SIA Process and RTP retry attempts

EIGRP - Source of values for metric calculation

EIGRP - Static neighbors over any L2 technology

EIGRP - Stub Router

EIGRP - Stub default behavior

EIGRP - Stub router types

EIGRP - Summarization per interface

EIGRP - Understanding Advertised Distance (AD)

EIGRP - Update message exchange process

EIGRP - Viewing RTP in Wireshark

EIGRP - af-interface configuration mode

EIGRP - how metrics are sent in updates

EIGRP - internal vs external routes

EIGRP - metric computation method

EIGRP - metric equation

EIGRP - named mode name

EIGRP - network command with no wildcard mask

EIGRP - redistribute connected and static routes

EIGRP - shutdown command

EIGRP - stub site function

EIGRP Create and advertise a default route

EIGRP Feasibility condition

EIGRP Header

EIGRP IP bandwidth-percent example

EIGRP Implementation by Non-Cisco Vendors

EIGRP LFA FRR

EIGRP Refining the behavior of load balancing with traffic-share

EIGRP SIA timers

EIGRP authentication

EIGRP auto-summary

EIGRP change rib scale

EIGRP establishing remote neighbors

EIGRP header - ACK field

EIGRP named mode

EIGRP on the Nexus Platform

EIGRP redistributing named mode

EIGRP rib-scale

EIGRP seed metrics when redistributing

EIGRP split horizon verification

EIGRP split-horizon vs poison reverse

EIGRP unequal cost load balancing

EIGRP what happens when a feasible successor fails

EIGRP

ERSPAN

EVE-NG supported Cisco and other vendor images

Equal-cost Multi-path routing

EtherChannel - Converting an L2 EtherChannel to L3

EtherChannel - LACP System ID

EtherChannel - LACP fast-switchover

EtherChannel - Load Balancing on CatOS

EtherChannel - Load balancing algorithm applied globally and per portchannel

EtherChannel - Maximum Number of Physical Links

EtherChannel - PAgP timer, hello interval, and age value

EtherChannel - Troubleshooting on Cisco IOS Switches

EtherChannel - Understanding LACP port and system priorities

EtherChannel - applying configurations to the interface

EtherChannel - implementing over 802.1Q tunneling

EtherChannel - load balancing algorithms

EtherChannel - max-bundle

EtherChannel - prerequisites for bundling

EtherChannel

Ethernet - Pause Frames

Ethernet - role of FCS field

Ethernet - speed and duplex mismatches

Ethernet - speed and duplex settings on an ISR4431

Ethernet CSMA-CD

Ethernet VPN (EVPN)

Ethernet administrative and operational encapsulation

Ethernet administrative operational mode

Ethernet frame types

Ethernet header

Ethernet over IP (EoIP)

Ethernet

FHRP - Comparison Table

FHRP - HSRP Resign Message

FHRP - interaction with routing protocols

FHRP - which ports should you configure

FHRP Communication Between Redundant Routers

FHRP Load Balancing Behavior

FHRP Protocols

FHRP communication path of keepalives

Fiber optic types

Fiber optics - Multi mode fiber optics characteristics

Fiber optics - Single mode fiber optics characteristics

Fiber optics - color coding

Fiber optics - connectors

FlexVPN Hub and Spoke backup routes

FlexVPN redundant hub with dual cloud

FlexVPN spoke to spoke communication fails with IPSec tunnel

FlexVPN

Frame Relay - is it a relevant technology anymore

Frame-Relay - emulating a Frame-Relay switch