Identifying a firewall rule

Unanswered Question
Jun 12th, 2009
User Badges:

Hi,


Is there any command/method to identify what rule/rule no. a permitted traffic is being allowed through?

I can see counts & sessions built but wanted to know if there is any way to know the session belongs to which ACE?

Also, one of my sessions(which is permitted on the firewall) gives flag "sAa", what does this mean. I can get a reponse from the destination port.

Thanks.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Farrukh Haroon Fri, 06/12/2009 - 22:58
User Badges:
  • Red, 2250 points or more

You can use the 'packet-tracer' command. It is available both in the CLI and GUI.


Regards


Farrukh

Actions

This Discussion