https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953840#M148054 <P>Stats:</P> <P></P> <P>CiscoASA# show threat-detection rate scanning-threat <BR /> Average(eps) Current(eps) Trigger Total events<BR /> 10-min Scanning: 43 44 25253 26110<BR /> 1-hour Scanning: 39 44 54649 142715</P> Thu, 05 Jan 2017 06:45:04 GMT mudasir05 2017-01-05T06:45:04Z https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953837#M148050 <P>Hello All,</P> <P></P> <P>We have Cisco ASA in production environment on which i see the connection count more than 300000 which is more than usual which we observe.</P> <P>Kindly let me know is this normal or is there any way to reduce it.</P> <P>Also if i clear the connection is that going to reduce the number of connections.</P> <P></P> <P>Thanks</P> <P></P> Tue, 12 Mar 2019 08:43:55 GMT https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953837#M148050 mudasir05 2019-03-12T08:43:55Z https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953838#M148051 <P>The number of connection solely depends on your workload. 300k sessions sounds kinda high but you might want to check the connection table for idle sessions (maybe you have configured a service-policy to set tcp timeouts &gt; 60 minutes which might explain why many sessions are still open that should already be closed).</P> <P></P> <P>Writing a small script to check which hosts got the most sessions open might help determine where all the open connections are coming from.</P> <P></P> <P>In any case you could try clearing your connection table using<STRONG> clear conn</STRONG> and observe the growth. Keep in mind that your tcp sessions will be closed and must be re-opened!</P> Wed, 04 Jan 2017 18:06:05 GMT https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953838#M148051 Oliver Kaiser 2017-01-04T18:06:05Z https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953839#M148052 <P>Thanks for the reply,</P> <P>In our case we have a Web Server and the number of Active Users accessing the Server simultaneously are around 15-18k...so in that case is it normal to have such connections?</P> <P>I did cleared the connections however after 15-20 mins it crossed the 300k mark again.</P> <P></P> <P>Kindly suggest next step?</P> <P>&nbsp;</P> <P>Thanks for your help.</P> Thu, 05 Jan 2017 06:28:54 GMT https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953839#M148052 mudasir05 2017-01-05T06:28:54Z https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953840#M148054 <P>Stats:</P> <P></P> <P>CiscoASA# show threat-detection rate scanning-threat <BR /> Average(eps) Current(eps) Trigger Total events<BR /> 10-min Scanning: 43 44 25253 26110<BR /> 1-hour Scanning: 39 44 54649 142715</P> Thu, 05 Jan 2017 06:45:04 GMT https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953840#M148054 mudasir05 2017-01-05T06:45:04Z https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953841#M148055 <P>The number of connection solely depends on your workload. 300k sessions sounds kinda high but you might want to check the connection table for idle sessions (maybe you have configured a service-policy to set tcp timeouts &gt; 60 minutes which might explain why many sessions are still open that should already be closed).</P> Sat, 07 Jan 2017 11:02:13 GMT https://community.cisco.com/t5/network-security/cisco-asa-connection-count/m-p/2953841#M148055 Farhan Mohamed 2017-01-07T11:02:13Z