Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
317
Views
0
Helpful
3
Replies

traffic passed on PIX

vintan1801
Level 1
Level 1

‎11-25-2008 08:57 AM - edited ‎03-11-2019 07:18 AM

Hi,

Can someone tell me if i need to check the following traffic is being passed on the PIX?

Source: x.x.x.246

destination: 172.18.46.75

what is the command to figure out on PIX?

& also need to check for hits on the access-list for:-

access-list acl-test permit tcp host grp1 host zb-nat object-group tcp_ports

please advise with the appropriate commands to run on PIX.

Thanks in advance.

Vin

Labels:
0 Helpful
3 Replies 3

Jon Marshall
Hall of Fame
Hall of Fame

‎11-25-2008 09:04 AM

Vin

"sh conn" will show you all the current connections going through the firewall and you can look for specfic connections -

http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/s2_72.html#wp1179782

"sh access-list acl-test" should show you the hits per line.

Jon

0 Helpful

vintan1801
Level 1
Level 1
In response to Jon Marshall

‎11-25-2008 09:21 AM

appreciate for your timely response.

But can't we use capture command on PIX from source to destination?

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to vintan1801

‎11-25-2008 02:44 PM

If you want to capture the actual traffic rather than just see if there is a connection then yes you could use the capture command to actually view the packets.

Jon

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card