cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
569
Views
0
Helpful
3
Replies

Cap traffic using cisco asa5510/pix

donnie
Level 1
Level 1

Hi all,

Is it possible to cap specific traffic eg ftp following through the asa5510 or pix firewall?

Pls advise, thks in advance.

3 Replies 3

Jennifer Halim
Cisco Employee
Cisco Employee

You can create access-list that match on the FTP traffic, by default FTP control is on TCP/21 and FTP data depending on whether it is passive or active FTP, it will use/negotiate either TCP/20 or random ports.

I would suggest that you just configure ACL that match the source and destination ip address and apply that to your capture command.

hobbe
Level 7
Level 7

Panos Kampanakis
Cisco Employee
Cisco Employee

To add to Jennifer's suggestion, here is an example of how to police traffic you want  http://supportforums.cisco.com/docs/DOC-1230#Traffic_Policing_with_Prioritization

I hope it helps.

PK

Review Cisco Networking for a $25 gift card