https://community.cisco.com/t5/network-security/asa-7-2-4-command-change/m-p/967877#M917471 <HTML><HEAD></HEAD><BODY><P>This is from the Cisco doco for this command:</P><P></P><P>Command History</P><P></P><P>Release</P><P>7.0(8)/7.2(4)</P><P></P><P>Modification</P><P>The syntax was simplified to use source and destination concepts instead of "local" and "foreign." In the new syntax, the source address is the first address entered and the destination is the second address. The old syntax used keywords like foreign and fport to determine the destination address and port.</P><P></P><P>Hope this helps!</P></BODY></HTML> Tue, 01 Jul 2008 09:47:41 GMT brettmilborrow 2008-07-01T09:47:41Z https://community.cisco.com/t5/network-security/asa-7-2-4-command-change/m-p/967876#M917468 <P>Anyone else notice that the latest in the 7.2 ASA code train changed the functionality of one of the most basic of commands. This change was also not documented in the release notes. </P><P></P><P>We went to this release due to the last round of security issues. This has caused some of our automated scripts to stop functioning.</P><P></P><P>The command in question is show conn : </P><P></P><P>We are no longer able to issue a show conn fport or show conn local (etc) .</P><P></P><P>I have looked at the new command structure and am having a hard time getting the same type of information. </P><P></P><P>If anyone has any information how to get the old style information from the new command please share. I noticed that cisco hasn't given any conversion information. </P><P></P><P>Thank you, </P><P></P><P>Rich </P><P></P><P>Old Version 7.2(3) </P><P></P><P>Ciscoasa# sho conn ?</P><P></P><P> all Enter this keyword to show conns including to-the-box and</P><P> from-the-box</P><P> count Enter this keyword to show conn count only</P><P> detail Enter this keyword to show conn in detail</P><P> foreign Enter this keyword to specify foreign IP</P><P> fport Enter this keyword to specify foreign port</P><P> local Enter this keyword to specify local IP</P><P> long Enter this keyword to show conn in long format</P><P> lport Enter this keyword to specify local port</P><P> protocol Enter this keyword to specify conn protocol</P><P> state Enter this keyword to specify conn state</P><P> | Output modifiers</P><P> &lt;cr&gt;</P><P></P><P></P><P>New Version 7.2(4)</P><P></P><P>firewall# sho conn ?</P><P></P><P> address Enter this keyword to specify IP address</P><P> all Enter this keyword to show conns including to-the-box and</P><P> from-the-box</P><P> count Enter this keyword to show conn count only</P><P> detail Enter this keyword to show conn in detail</P><P> long Enter this keyword to show conn in long format</P><P> port Enter this keyword to specify port</P><P> protocol Enter this keyword to specify conn protocol</P><P> state Enter this keyword to specify conn state</P><P> | Output modifiers</P><P> &lt;cr&gt;</P><P></P> Mon, 11 Mar 2019 13:07:09 GMT https://community.cisco.com/t5/network-security/asa-7-2-4-command-change/m-p/967876#M917468 frabonir 2019-03-11T13:07:09Z https://community.cisco.com/t5/network-security/asa-7-2-4-command-change/m-p/967877#M917471 <HTML><HEAD></HEAD><BODY><P>This is from the Cisco doco for this command:</P><P></P><P>Command History</P><P></P><P>Release</P><P>7.0(8)/7.2(4)</P><P></P><P>Modification</P><P>The syntax was simplified to use source and destination concepts instead of "local" and "foreign." In the new syntax, the source address is the first address entered and the destination is the second address. The old syntax used keywords like foreign and fport to determine the destination address and port.</P><P></P><P>Hope this helps!</P></BODY></HTML> Tue, 01 Jul 2008 09:47:41 GMT https://community.cisco.com/t5/network-security/asa-7-2-4-command-change/m-p/967877#M917471 brettmilborrow 2008-07-01T09:47:41Z