Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Debug Command in a PIX 6503 FWSM

Hi... I have a PIX 6503 FWSM with FWSM Firewall Version 2.3(1)

I want to run a debug command on the Firewall module but am told that debug is very CPU intensive. Can someone tell me the exact syntax to run a debug on a specific source and destination

2 REPLIES
Hall of Fame Super Blue

Re: Debug Command in a PIX 6503 FWSM

Hi Santokh

With version 2.3 the debugging does not work as it would on a standalone pix. From Cisco doc

"The FWSM cannot capture traffic that goes through the network processors (such as most through traffic)."

So if you want to debug traffic going to an FWSM interface you can but to debug traffic going through the FWSM from a source to a destination you can't.

You need to look at the capture command, a link is provided below:

http://www.cisco.com/en/US/products/hw/switches/ps708/products_command_reference_chapter09186a0080350595.html#wp1165215

I haven't used the capture command much. I usually track it down with access-lists ie:

you can have outbound and inbound access-lists with the FWSM so you can help narrow down where the traffic is getting to.

HTH

New Member

Re: Debug Command in a PIX 6503 FWSM

Hi Jon

Thanks for your reply.

You have confirmed what I suspected - it is difficult to debug traffic on a FWSM.

Thanks for tips on the capture command. I tried a few capture commands and they worked.

Regards

Santokh

283
Views
0
Helpful
2
Replies
CreatePlease login to create content