Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
360
Views
0
Helpful
3
Replies

What servers are still using the l2l tunnel?

richard@skylo.net
Level 1
Level 1

‎08-29-2024 12:21 PM

I have several l2l tunnels we are moving and decommissioning. I see a few tunnels with very little traffic, but traffic nonetheless based on RX and TX counts, and I need to see who exactly and what servers are still using the tunnel, and which ports.

How can I see what servers are still using the s2s VPN tunnel and what ports?

I have a cisco ASA FPR2120.

Thank you.

0 Helpful
3 Replies 3

MHM Cisco World
VIP
VIP

‎08-29-2024 12:33 PM

Try use vpn filter 

Then use 

Show asp table filter 

This will give you IP try to use vpn l2l

https://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/99103-pix-asa-vpn-filter.html

MHM

0 Helpful

M02@rt37
VIP
VIP

‎08-29-2024 01:04 PM

Hello richard@skylo.net 

To identify which servers are using your Site-2-Site VPN tunnels on your ASA and what ports they are using, you can use the show conn detail command to view active connections and filter by relevant IPs, show vpn-sessiondb l2l to see active L2L VPN sessions, and enable detailed logging with logging buffer informational to capture traffic details.

For more granular analysis, you can set up a packet capture on the ASA to monitor specific traffic through the VPN and analyze the captured data using show capture, or export it for deeper inspection. 

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
0 Helpful

ccieexpert
VIP
VIP

‎08-29-2024 02:45 PM

logging just for the connection entries (not everything) and you can also use netflow to log the flow

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card