cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
214
Views
0
Helpful
1
Replies

Identifying a firewall rule

suthomas1
Level 6
Level 6

Hi,

Is there any command/method to identify what rule/rule no. a permitted traffic is being allowed through?

I can see counts & sessions built but wanted to know if there is any way to know the session belongs to which ACE?

Also, one of my sessions(which is permitted on the firewall) gives flag "sAa", what does this mean. I can get a reponse from the destination port.

Thanks.

1 Reply 1

Farrukh Haroon
VIP Alumni
VIP Alumni

You can use the 'packet-tracer' command. It is available both in the CLI and GUI.

Regards

Farrukh

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: