Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1009
Views
5
Helpful
3
Replies

Firesight NAT Table lookup

bwilson
Level 1
Level 1

‎11-14-2016 08:42 AM - edited ‎03-12-2019 06:11 AM

In Firesight, I'm trying to look up the internal address to NAT address for a specific port, at a specific time.  I have the NAT address and the port, and need the internal IP address.

Labels:
0 Helpful
3 Replies 3

Oliver Kaiser
Level 7
Level 7

‎11-15-2016 11:27 AM

What sensor are you using? ASA with Firepower module, FTD or Firepower NG-IPS Appliance?

In case you are using ASA Firepower module / FTD, connect to cli and execute the following command:

> show xlate

bwilson
Level 1
Level 1
In response to Oliver Kaiser

‎11-17-2016 02:58 PM

I'm not sure the difference between FTD and Firepower NG-IPS appliance.

We're not running any ASA services.  The chassis is a Firepower 9300.  Everything I've seen so far is in the web interface, no command line.

0 Helpful

Oliver Kaiser
Level 7
Level 7
In response to bwilson

‎11-17-2016 03:04 PM

NG-IPS are the dedicated IPS appliances from the sourcefire aquisition like Firepower 7000&8000.

If you want to check your nat table on FTD you have to get on the command line of your security module. In case you are using 6.1 you can directly type show xlate to view your current translations. If you are still running 6.0 you have to switch to diagnostic cli using system support diagnostic-cli, enter enable and then the show xlate command.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card