Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
16652
Views
10
Helpful
2
Replies

Cisco ASA 5505 internal-Data interfaces ?

Go to solution
Haider Malik
Level 1
Level 1

‎05-18-2013 07:11 AM - edited ‎03-11-2019 06:45 PM

Hello relatively new with the ASA . can anyone explain  what are internal-Data interfaces are ?

Many Kind Regards in advanced for your help

EscapeASA# sh interface ip brief

Interface                  IP-Address      OK? Method Status                Protocol

Internal-Data0/0           unassigned      YES unset  up                    up 

Internal-Data0/1           unassigned      YES unset  up                    up

Vlan1                      192.168.1.1     YES CONFIG up                    up 

Vlan2                      92.61.193.131   YES DHCP   up                    up 

Vlan5                      unassigned      YES unset  down                  down

Virtual0                   127.0.0.1       YES unset  up                    up 

Ethernet0/0                unassigned      YES unset  up                    up 

Ethernet0/1                unassigned      YES unset  down                  down

Ethernet0/2                unassigned      YES unset  down                  down

Ethernet0/3                unassigned      YES unset  down                  down

Ethernet0/4                unassigned      YES unset  down                  down

Ethernet0/5                unassigned      YES unset  down                  down

Ethernet0/6                unassigned      YES unset  down                  down

Ethernet0/7                unassigned      YES unset  up                    up 

~~~~~~~~~~~~~~~~~~~~~~ MIB WALK ~~~~~~~~~~~~~~~~~~~~

.1.3.6.1.2.1.2.2.1.2.1 = String: "Adaptive Security Appliance 'Null0' interface"

.1.3.6.1.2.1.2.2.1.2.2 = String: "Adaptive Security Appliance '0' interface"

.1.3.6.1.2.1.2.2.1.2.3 = String: "Adaptive Security Appliance 'Internal-Data0/0' interface"

.1.3.6.1.2.1.2.2.1.2.4 = String: "Adaptive Security Appliance 'Ethernet0/0' interface"

.1.3.6.1.2.1.2.2.1.2.5 = String: "Adaptive Security Appliance 'Ethernet0/1' interface"

.1.3.6.1.2.1.2.2.1.2.6 = String: "Adaptive Security Appliance 'Ethernet0/2' interface"

.1.3.6.1.2.1.2.2.1.2.7 = String: "Adaptive Security Appliance 'Ethernet0/3' interface"

.1.3.6.1.2.1.2.2.1.2.8 = String: "Adaptive Security Appliance 'Ethernet0/4' interface"

.1.3.6.1.2.1.2.2.1.2.9 = String: "Adaptive Security Appliance 'Ethernet0/5' interface"

.1.3.6.1.2.1.2.2.1.2.10 = String: "Adaptive Security Appliance 'Ethernet0/6' interface"

.1.3.6.1.2.1.2.2.1.2.11 = String: "Adaptive Security Appliance 'Ethernet0/7' interface"

.1.3.6.1.2.1.2.2.1.2.12 = String: "Adaptive Security Appliance 'Internal-Data0/1' interface"

.1.3.6.1.2.1.2.2.1.2.13 = String: "Adaptive Security Appliance '_internal_loopback' interface"

.1.3.6.1.2.1.2.2.1.2.14 = String: "Adaptive Security Appliance 'Virtual254' interface"

.1.3.6.1.2.1.2.2.1.2.15 = String: "Adaptive Security Appliance 'inside' interface"

.1.3.6.1.2.1.2.2.1.2.16 = String: "Adaptive Security Appliance 'outside' interface"

.1.3.6.1.2.1.2.2.1.2.17 = String: "Adaptive Security Appliance 'Vlan5' interface"

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-18-2013 08:32 AM

They are internal to the device and move traffic into and out of CPU and memory. For 99.5% of installations you never have to interact with them in any way for an admin perspective.

If you want more details on the internals, sign up for a free account on www.Ciscolive365.com and refer to the presentation for BRKSEC-3020 ("Advanced ASA Firewalls Inside Out").

View solution in original post

2 Replies 2

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-18-2013 08:32 AM

They are internal to the device and move traffic into and out of CPU and memory. For 99.5% of installations you never have to interact with them in any way for an admin perspective.

If you want more details on the internals, sign up for a free account on www.Ciscolive365.com and refer to the presentation for BRKSEC-3020 ("Advanced ASA Firewalls Inside Out").

Go to solution
Supermantech
Level 1
Level 1
In response to Marvin Rhoads

‎03-24-2020 06:08 AM

I see these internal interfaces also show increasing counts,  about 80 per hour.  I opened a tac case. . .see what they say.  in my case I started to look at this as the ASA seems to be the culprit of missing PING replies (a high speed monitoring circuit goes through the ASA).  about 20% of ping replies not making it through ASA,  it appeared to me.  All other physical interfaces show OK.  

 

Interface state is active
Interface Internal-Data0/0 "", is up, line protocol is up
Hardware is i82599_xaui rev02, BW 10000 Mbps, DLY 10 usec
(Full-duplex), (10000 Mbps)
Input flow control is on, output flow control is off
MAC address 0000.0001.0001, MTU not set
IP address unassigned
135077952345 packets input, 109064575031916 bytes, 0 no buffer
Received 142048755 broadcasts, 0 runts, 0 giants
884655 input errors, 0 CRC, 0 frame, 884655 overrun, 0 ignored, 0 abort
7 pause input, 7 resume input
0 L2 decode drops, 0 demux drops
233567442032 packets output, 139920090456483 bytes, 278104 underruns
0 pause output, 0 resume output
0 output errors, 0 collisions, 1 interface resets
0 late collisions, 0 deferred
0 output decode drops
0 input reset drops, 0 output reset drops

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card