Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
867
Views
0
Helpful
2
Replies

ASA 5520 Logging inaccuracies

platinum_jem
Level 1
Level 1

‎02-25-2010 01:05 AM - edited ‎03-11-2019 10:14 AM

Hi,

This may seem strange, but i am having this weird problem when looking at the ASA 5520 logging from ASDM.

When i opened up the Real-Time Logging in ASDM, i noticed that the Source and Destination IP and ports are swapped. For example, my host has an IP of 172.16.1.1, accessing a server 123.123.123.123 @ TCP 80. When i look at the traffic logging, the Source IP shows 123.123.123.123 and Source port TCP 80, destination IP shows 172.16.1.1 and Dest. Port shows some random generated high port.


I did not noticed when this problem occurred, just realised it recently while doing some checking. Any ideas what may cause this?

Or is it time to reboot the firewall?

Labels:
0 Helpful
2 Replies 2

Herbert Baerten
Cisco Employee
Cisco Employee

‎02-25-2010 01:48 PM

Which version of ASDM is this?

There is this bug:


CSCta42388    Source and Destination not correct in Real-Time Log Viewer

Fixed in 6.2(1.55) and 6.2(2.50) and later.

0 Helpful

platinum_jem
Level 1
Level 1
In response to Herbert Baerten

‎02-25-2010 05:37 PM

Using 6.1(5)57

Maybe thats the reason. I shall go patch up to ASDM 6.2 and see if the problem still occurs.

Thanks!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card