Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
23994
Views
9
Helpful
8
Replies

ASA5510. Check bandwidth usuage for each user?

Difan Zhao
Level 5
Level 5

‎06-16-2009 09:29 AM - edited ‎03-09-2019 10:22 PM

Good morning!

Is there a command to check who (source IP) is using most of the bandwidth on the outside interface? Does ASA keep track of the traffic flow of each session? The reason why I am asking is that I think some employees are downloading stuff and they use a lot bandwidth and I need to find out who they are... Thanks!

Difan

Labels:
0 Helpful
8 Replies 8

Collin Clark
VIP Alumni
VIP Alumni

‎06-16-2009 01:11 PM

There is a nice graph in ASDM. Open ASDM then click on the Firewall Dashboard tab. In the right column in the middle graph is Top Usage Status. Select Top 10 Sources and that should give you the info you're looking for.

Hope that helps.

Difan Zhao
Level 5
Level 5
In response to Collin Clark

‎06-16-2009 01:33 PM

Thank you for the information! Actually I have some issues with my ASDM... It freezes after you launch it and put in the username and password. It just stopped. Then if you restart the ASA it will fix it but after days the problem will happen again!! I have tried different Java version but no help. I am using ASDM version 6 and maybe I should think of updating to version 7 if there is one!

So is there an equivalent command in CLI for this top 10 sources IP? Thanks a lot!

0 Helpful

Collin Clark
VIP Alumni
VIP Alumni
In response to Difan Zhao

‎06-16-2009 02:00 PM

I rarely use ASDM too. I don't know a command off the top of my head, but let me look around.

0 Helpful

Difan Zhao
Level 5
Level 5
In response to Collin Clark

‎06-16-2009 08:58 PM

thank you! I appreciate

0 Helpful

Collin Clark
VIP Alumni
VIP Alumni
In response to Difan Zhao

‎06-17-2009 05:47 AM

I haven't been able to find an ASA command, but here is one way.

http://www.tek-tips.com/viewthread.cfm?qid=1463236&page=1

Difan Zhao
Level 5
Level 5
In response to Collin Clark

‎06-17-2009 02:44 PM

Thank you!

0 Helpful

jkuehl
Level 1
Level 1
In response to Difan Zhao

‎06-18-2009 12:11 PM

make sure your java version is not above Version 6 update 7, if so you will need to downgrade. I updated by asdm to 6.1(5)51 and my ASA to 8.0(4) and that also seemed to help out with stability.

0 Helpful

JORGE RODRIGUEZ
Level 10
Level 10
In response to jkuehl

‎06-18-2009 07:27 PM

Difan,

For future reference, a new feature was introduced in latest asa version code 8.2.x called netflow, it was only supportted on the 5580 platform but under this code is now supported on ALL ASA5500 series. Configure netflow under this code if you ever upgrade to it,find a free netflow collector out there, thus you can capture traffic flows per source/destination traversing your firewall as you would in a router.

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/ef.html#wp1972826

Regards

Jorge Rodriguez
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents