Re: cisco FTD source destination ip bandwidth check from CLI

suryaaa · ‎04-23-2025

Dear Team,

Please help to get command on CLI Cisco FTD 1120 to check incoming outgoing (Source destination) packet , bandwidth, port etc.

Sheraz.Salim · ‎04-24-2025

There is no such single command to give you the output of what you requested here. hence there are few command which can give you the information and you could narrow it down to figure out what is going on in your firewall.

Check interface status and bandwidth usage
"show interface GigabitEthernet1/2"
!
show interface summary
"show interface ip brief"
!
Show active connections (with source/destination and port)
"show conn"
!
Show NAT translations and hits
"show nat detail"
!
Monitor real-time throughput
"show traffic"

Also FTD GUI will be more helpful to see and customise in order to check what coming in and out of your firewall.

please do not forget to rate.

suryaaa · ‎04-24-2025

Thanks for reply, Its helpfull for me.

another query is if some one try to open application from his PC then can I monitor the pc from firewall cli which application ip & which port try to initiate the session with destination.

Please help..

Sheraz.Salim · ‎04-24-2025

Instead of using the cli. it would be much better for you to use the GUI of the firewall. I have paste https://www.youtube.com/watch?v=BoKP2T63LKA link have a look old video but put you in right direction what you asking for.

please do not forget to rate.

suryaaa · ‎04-24-2025

Thanks for support, but i need cli command for this purpose.

Sheraz.Salim · ‎04-24-2025

If this is the case your only best bet is the command “show conn details” or if you ant to be very specific with ip address/es in that case “show conn address 192.1681.10”

understanding-cisco-asa-connection-flags/

please do not forget to rate.