dhananjoy chowdhury Sun, 08/17/2008 - 10:51
User Badges:
  • Silver, 250 points or more

Hi,

A good step would be to go through the traffic logs.


However, if you dont want to go for logging/ syslog, these commands can be helpfull...


- "show access-list" >> to check the access-list hit count for that traffic.


- "show connection" >> to verify the entries in the connection table for your interesting traffic.


- "show xlate" >> to verify the entries in the NAT transalation table , whether correct NAT is configured or not.



Tshi M Sun, 08/17/2008 - 16:24
User Badges:
  • Silver, 250 points or more

You can also use ASDM and filter the interesting traffic.

purohit_810 Sun, 08/17/2008 - 18:49
User Badges:
  • Silver, 250 points or more

If you would capture traffic for VPN.


http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808c9a87.shtml


If you would capture traffic for specific source and destination:

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807c35e7.shtml


Configure above captures.


Thanks,

Dharmesh Purohit

Actions

This Discussion