https://community.cisco.com/t5/network-security/firewall-policy-usage-asa/m-p/4303481#M1079137 <P>What is the best method by which to determine what policies are being used in various contexts and how much they are being used.&nbsp; Thinking about an auditing/cleanup process use case.&nbsp;&nbsp;</P> Mon, 08 Mar 2021 20:34:17 GMT cph24795 2021-03-08T20:34:17Z https://community.cisco.com/t5/network-security/firewall-policy-usage-asa/m-p/4303481#M1079137 <P>What is the best method by which to determine what policies are being used in various contexts and how much they are being used.&nbsp; Thinking about an auditing/cleanup process use case.&nbsp;&nbsp;</P> Mon, 08 Mar 2021 20:34:17 GMT https://community.cisco.com/t5/network-security/firewall-policy-usage-asa/m-p/4303481#M1079137 cph24795 2021-03-08T20:34:17Z https://community.cisco.com/t5/network-security/firewall-policy-usage-asa/m-p/4303630#M1079145 <P>Hi</P> <P>&nbsp;</P> <P>You can go with the simple way by looking at hitcounts for cleaning non used rules.</P> <P>Then, the best way would be to have a syslog like ELK (or any others you prefer) to look at the traffic to tweak rules that are getting hits and restrict policies.</P> <P>&nbsp;</P> <P>You can also use Cisco CLI analyzer which will give you a clear view of what policies are used, what objets are used or not…</P> <P>&nbsp;</P> Tue, 09 Mar 2021 04:02:26 GMT https://community.cisco.com/t5/network-security/firewall-policy-usage-asa/m-p/4303630#M1079145 Francesco Molino 2021-03-09T04:02:26Z