can anyone offer any advice on what is the best way of seeing traffic that gets dropped on an interface. For example if you run tcpdump on an interface for a host you can see all traffic that hits the interface. whats the best way to achieve this with an interface on a pix/asa
Yeah I am familiar with the capture command. so I guess to debug packets being dropped by the outside interface you need some details about destination/source address, apply and acl to the interface and capture packets for that acl? this would be considered the best way to get this info? My only concern about that is it coudl be a potential security risk. if you put an acl on the outside interface to allow 126.96.36.199 in to an internal host for IP just so you can capture the packets you are punching a hole in your firewall and you wouldnt want to forget to take it off after troubleshooting. correct?
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...