I am having some weird problem. we have configured access list for the applications on ASA outside interface. It is working also but I am not able to see any hit count on the access list. It increases only by one when a new session is initiated from outside world. If we continue to use that application hit count doesnt seem to increase. I checked in the command show conn detail it shows the connection established.
I have often wondered about this and I have come to the conclusion that the count only increments for each new session started. Hence once the session has been established further packets for this session do not increment the counter. If you disconnect the session and start a new one the counter will increment.
Does anyone else out there have an alternative explaination?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...