Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
737
Views
0
Helpful
3
Replies

ASA - Troubleshooting Steps

Amin Shaikh
Level 1
Level 1

‎08-17-2008 09:04 AM - edited ‎03-11-2019 06:32 AM

Hi,

What troubleshooting steps are required to see if the traffic is passing from a specific host from internal network to DMZ or from outside to inside...

Labels:
0 Helpful
3 Replies 3

dhananjoy chowdhury
Level 5
Level 5

‎08-17-2008 10:51 AM

Hi,

A good step would be to go through the traffic logs.

However, if you dont want to go for logging/ syslog, these commands can be helpfull...

- "show access-list" >> to check the access-list hit count for that traffic.

- "show connection" >> to verify the entries in the connection table for your interesting traffic.

- "show xlate" >> to verify the entries in the NAT transalation table , whether correct NAT is configured or not.

0 Helpful

Tshi M
Level 5
Level 5

‎08-17-2008 04:24 PM

You can also use ASDM and filter the interesting traffic.

0 Helpful

purohit_810
Level 5
Level 5

‎08-17-2008 06:49 PM

If you would capture traffic for VPN.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808c9a87.shtml

If you would capture traffic for specific source and destination:

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807c35e7.shtml

Configure above captures.

Thanks,

Dharmesh Purohit

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card