Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
315
Views
0
Helpful
2
Replies

Help on ASA traffic Outside

saquib.tandel
Level 1
Level 1

‎10-29-2009 03:18 AM - edited ‎03-11-2019 09:33 AM

Hello

Different application needs different ports to pass traffic from inside to outside with ASA placed inbetween.

Instead of allowing all ports ; how to streamline with needed ports. Struggling to get it working.

LANUSERS_____switch____ASA_____INTERNET

Access-list is applied on ASA inside interface.

IF I start a Trading application from a LAN Host which needs to connect to Trading Server on INTERNET; how do I identify which ports are needed to open on ASA??

Labels:
0 Helpful
2 Replies 2

cisco24x7
Level 6
Level 6

‎10-29-2009 03:31 AM

access-list capture permit ip LAN_host Internet_host log

capture tcpdump access-list test interface internal

"show capture tcpdump" will show you which port LAN_host communicate with Internet host.

0 Helpful

saquib.tandel
Level 1
Level 1
In response to cisco24x7

‎10-29-2009 04:02 AM

Hi

I am aware of LAN Host but not aware of Internet Host.

How to clear counter of the log as it shows already some hits

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card