Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3538
Views
0
Helpful
2
Replies

trace traffic through asa

tolinrome tolinrome
Level 1
Level 1

‎02-07-2014 11:22 AM - edited ‎03-11-2019 08:42 PM

How can I trace an http request through the asa from the point of user initiantion to external site and back to the user? I need to be able to see why there are conection problems and if I can see the route and whats going on in the packet maybe that can help.

Thanks.

Labels:
0 Helpful
2 Replies 2

Marius Gunnerud
VIP
VIP

‎02-07-2014 12:28 PM

do you mean you want to see the actions taken on a packet through the ASA, or you want to allow traceroute through the ASA?

If you mean the latter then you can use packet tracer, just change the IP addresses to the required values:

packet-tracer input inside tcp 192.168.1.10 12345 4.2.2.2 80 detail

Another option is to do a packet capture, this capture can be viewed in Wireshark for analysis.

You can set this up using either the ASDM or the CLI.  The following link has a guide as to how to configure packet capture using both.

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080a9edd6.shtml

--
Please remember to rate and select a correct answer

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Vasilii Mikhailovskii
Level 7
Level 7

‎02-08-2014 11:29 PM

Hello.

You could start traffic capture with additional keyword "trace".

After you will be able to see how every packet was examined and if it was dropped and why.

PS: after you captured traffic, use command "sh capture packet-number <1...x> trace

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card