How to view NATting on ASA 5510?

Unanswered Question
Mar 8th, 2007


configured static NAT with the rules applied to it, i wanted to view the public IP users who is hitting my server residing behind the ASA with the private IP configured& accessing the specified port

Internet User ---->Internet Router----> ASA ------> All My Servers

rules i applied to access only webserver & ftp as an example.

My requirement is to view which public IP is using which webserver or ftp server ip address on which port.

eg. ------->> port 21>> port 80

where is the internet user & is the my actual ftp server & web server, but configured on ASA to do a static NAT to &

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
kaachary Thu, 03/08/2007 - 02:15

Enable logging, that would tell you the sequence of events, when and which ip address tried to access which host on the inside.

logging on

logging monitor 6

term mon

If ASA has lot of traffic flowing across, it is recommended to configure a syslog for the same, do not use monitor logging in that case.


suschoud Thu, 03/08/2007 - 06:50

one more workaround to view the public ip addresses which are accessing your internal server is the command :

sh conn detail | grep

you'll see all the existing connections.

the connection detail give you the internet ip address accesisng the internal server,the port on which the connection is made ,the state of the ocnnection and the time too.

Please rate if this helps!!




This Discussion