10-14-2011 12:44 PM - edited 03-11-2019 02:38 PM
Hi,
Is there a command that will show all protocols and/or ports that have traversed the ASA?
I know show service-policy will show what's being inspected, but I'm looking for something independent of that.
Thanks.
10-14-2011 01:01 PM
Well that really difficult to pull such info from the ASA, because there could be any xyz port or protocol that are being accessed on ASA, I am not sure if thats even possible. Can you just explain your exact requirement and purpose for it.
Varun
10-14-2011 01:12 PM
I was just looking for an alternative to show service-policy. That command is limited by two things
So my requirement is similar to commands that show all address translation, all tcp connections, etc. except I want to see all protocols traversing the firewall.
I guess show conn is the closet thing?
10-14-2011 01:15 PM
Check:
show xlate
show conn
show conn detail
This might give you a closer information of what you are looking for.
Thanks,
Varun
10-14-2011 01:35 PM
Thanks. I guess netflow would be the best approach then.
10-19-2011 11:17 PM
Yes, NetFlow will be the proper approach to see conversations and protocol details. The NetFlow from ASA, called NSEL, can show pre and post NAT-ed IP Addresses, but not many flow analyzing tools do this.
One tool which has the capability to show this info using ASA NetFlow is ManageEngine NetFlow Analyzer. Try the free edition which can monitor 2 interfaces for your Cisco ASA.
Regards,
Don Thomas
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide