06-16-2009 09:29 AM - edited 03-09-2019 10:22 PM
Good morning!
Is there a command to check who (source IP) is using most of the bandwidth on the outside interface? Does ASA keep track of the traffic flow of each session? The reason why I am asking is that I think some employees are downloading stuff and they use a lot bandwidth and I need to find out who they are... Thanks!
Difan
06-16-2009 01:11 PM
There is a nice graph in ASDM. Open ASDM then click on the Firewall Dashboard tab. In the right column in the middle graph is Top Usage Status. Select Top 10 Sources and that should give you the info you're looking for.
Hope that helps.
06-16-2009 01:33 PM
Thank you for the information! Actually I have some issues with my ASDM... It freezes after you launch it and put in the username and password. It just stopped. Then if you restart the ASA it will fix it but after days the problem will happen again!! I have tried different Java version but no help. I am using ASDM version 6 and maybe I should think of updating to version 7 if there is one!
So is there an equivalent command in CLI for this top 10 sources IP? Thanks a lot!
06-16-2009 02:00 PM
I rarely use ASDM too. I don't know a command off the top of my head, but let me look around.
06-16-2009 08:58 PM
thank you! I appreciate
06-17-2009 05:47 AM
I haven't been able to find an ASA command, but here is one way.
06-17-2009 02:44 PM
Thank you!
06-18-2009 12:11 PM
make sure your java version is not above Version 6 update 7, if so you will need to downgrade. I updated by asdm to 6.1(5)51 and my ASA to 8.0(4) and that also seemed to help out with stability.
06-18-2009 07:27 PM
Difan,
For future reference, a new feature was introduced in latest asa version code 8.2.x called netflow, it was only supportted on the 5580 platform but under this code is now supported on ALL ASA5500 series. Configure netflow under this code if you ever upgrade to it,find a free netflow collector out there, thus you can capture traffic flows per source/destination traversing your firewall as you would in a router.
http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/ef.html#wp1972826
Regards
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: