Re: FWSM 3.1(4) capture only showing traffic inbound to an inter
Sure. thanks! I know I could use the same ACL, but I'm using two for testing..disregard the reset. I just telnet'd to port 3389. It's the initial ack from 10.50.1.66 etc that's not showing on the JTC-BB interface. The initial SYN is not showing on the ESX-ILO interface etc. Also icmp echo requests will show leaving an interface, just not tcp.
access-list in extended permit ip host 10.50.1.66 any
access-list in extended permit ip any host 10.50.1.66
access-list out extended permit ip host 10.50.1.66 any
access-list out extended permit ip any host 10.50.1.66
capture inside type raw-data access-list in interface JTC-BB
capture outside type raw-data access-list out interface ESX-ILO
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...