Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
389
Views
10
Helpful
2
Replies

How to monitor firewall is droping UDP packets?

amitsb7
Level 1
Level 1

‎07-26-2007 12:58 AM - edited ‎03-10-2019 03:43 AM

Can you tell me the command I can use to see how many packets are getting droped on my pix.

Labels:
0 Helpful
2 Replies 2

jwalker
Level 3
Level 3

‎07-30-2007 01:26 PM

This command is 'show asp drop'. It will tell you all of the various reasons PIX/ASAs dropped packets. This info can be quite useful during troubleshooting because it can allow you to quickly ascertain a potential issue.

jwalker
Level 3
Level 3
In response to jwalker

‎07-30-2007 01:31 PM

If you want to test whether specific traffic is getting through, create a capture like below.

define interesting traffic

access-list cap1 extended permit ip 1.1.1.1 255.255.255.255 2.2.2.2 255.255.255.255

create and apply capture

cap cap1 access-list cap1 interface outside

view capture

sho cap cap1

download capture (open w/ Ethereal)

https:///capture/cap1/pcap

*** Please rate if this helps ***

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card