 
					
				
		
11-29-2010 12:57 AM - edited 03-11-2019 12:15 PM
Hello.
We are using FWSM with software 4.1(1) and ASDM 6.2(1)F.
How can we disable the use of names for the routing table only?
Thanks.
Regards.
Andrea
 
					
				
		
11-29-2010 01:04 AM
Unfortunately you can't disable "names" for routing table only. It is a global command and if you disable it, it will disable the name for everything that uses the name command.
11-29-2010 03:59 AM
Hello Jennifer and many thanks for your help.
Another two questions for you for the same device.
First, why FWSM takes more than two minutes to show NAT table using GUI?
Second, capture feature shows captured packets after some seconds from conversations?
Thanks.
Andrea
 
					
				
		
11-29-2010 05:19 PM
First question: it really depends on how many existing xlates you might have in the NAT table, and also how is your connection between the FWSM to the GUI? It could be a combination of both that causes the delay.
Second question: capture should show the packets as soon as the traffic/packets are hitting the interfaces. If the traffic does not hit the actual interface, it will not show on the packet capture. It is the first thing that shows for packet going inbound to the interface, and it will be the last thing before packet left the interface going outbound.
Hope that answers your questions.
11-30-2010 12:39 AM
Hello Jennifer.
About the first question.
To show one thousand of rules, from Configuration/Firewall menù, FWSM sometimes takes more than two minutes. This happens from different computers: this is tedious.
About second question.
Sometimes, the same FWSM shows the captured packets after the connection is already closed.
Regards.
Andrea
 
					
				
		
11-30-2010 01:55 AM
You might want to open a TAC case to get the 2 issues investigated closer.
For the first question, since you have a thousand rules, around 2 mins is actually already quite fast to retrieve all the 1000 lines of ACL. Those ACL needs to be retrieved from the FWSM and the connectivity between the FWSM and the GUI is via HTTPS, so it needs to transfer the 1000 lines of ACL from the FWSM towards the GUI.
 
					
				
				
			
		
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide