Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Can I drop an inbound to outside interface connection to my ASA 5520

Hi,

From Netflow Analyazer I can see a connection from an external IP to my ASA's outside interface that's been going for 2 hours and downloaded 3GB of data so far, how can I kill this conenction? It's a http connection.

Thanks

6 REPLIES
Silver

Re: Can I drop an inbound to outside interface connection to my

you can shun the connection or perform a "clear

xlate" on that connection

New Member

Re: Can I drop an inbound to outside interface connection to my

Thanks, would do I type after "clear xlate"? if the IP I need to drop is 1.2.3.4?

Thanks

Gold

Re: Can I drop an inbound to outside interface connection to my

clear local-host is good for this also.

New Member

Re: Can I drop an inbound to outside interface connection to my

Thanks, will this drop that single external IP that's comming inbound? I don't want to drop all connections.

Thanks

Gold

Re: Can I drop an inbound to outside interface connection to my

that will drop all active network connections by whichever address you specify:

http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/c3_72.html#wp2046006

New Member

Re: Can I drop an inbound to outside interface connection to my

Why don't you just put up an ACL blocking that IP on the outside interface?

301
Views
0
Helpful
6
Replies
CreatePlease to create content