Episode Name: Episode 7 - Monitoring Firewall Performance
Contributors: Jay Johnston, Blayne Dreier, David White Jr., Magnus Mortensen
Posting Date: January 7, 2010
Description: Learn about personal computing choices and software tools used in the TAC to diagnose customer problems. The panel also reviews techniques and methods for monitoring firewall performance and identifying performance problems.
Listen Now (MP3 49.3 MB; 34:30 mins)
Subscribe to the Podcast in iTunes by pasting the following link into your browser (which should launch iTunes) where you can subscribe to the podcast.
Alternatively, you can search within iTunes for Cisco TAC Security Podcast, and subscribe there. By subscribing, you will automatically receive future episodes when they are posted.
For users who would like an alternative method for subscribing, you can add the following URL into your favorite RSS reader, and subscribe to that feed.
Episode Show Notes
Networking tools used by the TAC
- Information on The RSS feeds for Hot Issues in the Cisco TAC
- netcat - TCP/IP Swiss army knife
- tcpreplay/tcprewrite - packet replay and modification software
- SecureCRT - SSH client
- Putty - SSH client
- Wireshark - Packet capture analyzer
- mrtg - SNMP graphing program
Monitoring Firewall Performance commands discussed in the episode:
'show cpu usage'
'show cpu usage detailed'
'show conn count'
'show xlate count'
'show pc conn' - FWSM only; shows connections residing on main CPU of the FWSM
'show mem detail'
'show np 3 acl count [0-12]' - FWSM only; shows ACL memory usage on NP 3
'show np blocks' - FWSM only; shows if NPs have been oversubscribed
'show asp drop'
'show environment' - ASA 5580 model only
About the Cisco TAC Security Podcast
The Cisco TAC Security Podcast Series is created by Cisco TAC engineers. Each episode provides an in-depth technical discussion of Cisco product security features, with emphasis on troubleshooting.