Re: Is there a cli command to do this?

John Blakley · ‎11-04-2010

I need to find what port an entry is using, but the ASA is translating it to a named port. How can I find this port? For the life of me, I can't figure it out....

Thanks,
John

HTH, John *** Please rate all useful posts ***

manish arora · ‎11-04-2010

Hi John,

Can you explain a little more on what your are trying to find or troubleshoot ? your question is very general given the capabilities of ASA .

Manish

John Blakley · ‎11-04-2010

For example:

access-list TEST permit tcp host 5.5.5.5 host 6.6.6.6 eq lotusnotes

I want to be able to *see* what the lotusnotes port equals.

The ASA does this by default, but I don't know how to turn it off like I can names.

Make sense?

HTH, John *** Please rate all useful posts ***

Panos Kampanakis · ‎11-04-2010

Unfortunately you can't turn it off. Well known port like ssh will always show like that.

Make sure you don't have names turned on and you have a name for your ports. So "no names" will fix any issue where the ASA has put in a name instead of keeping the ip and port. But for pre-defined well know ports you can't stop ot.

FYI, Lotusnotes is port 1352

I hope it helps.

PK

Jennifer Halim · ‎11-04-2010

Here is the list that Cisco ASA uses by default:

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/ref_ports.html#wpxref24361

Hope that helps.