Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Identifying ASA traffic types and individual bandwidth utilization

I would like to ask my fellow security geeks out there to assist me in determining the types and amount of non-vpn traffic going from inside to to the internet. I don't have Net Flow, and I don't have time to put a sniffer on. Is there some type so cisco tool that can do this? Thank you

7 REPLIES
Gold

Re: Identifying ASA traffic types and individual bandwidth utili

a sniffer is going to be the best way to do this. try wireshark (formerly known as ethereal).

i'm not sure how much time you think putting a sniffer on the network takes, but in the time it took you to compose your original post and read this, you could nearly have one up and running.

Silver

Re: Identifying ASA traffic types and individual bandwidth utili

wireshark on windows? I don't think wireshark

can do the job especially if you're talking

capture about 20GB of data.

The best thing to do, IMHO, is to run

tcpdump on gentoo linux or FreeBSD and dump

it into a file. This will allow you to replay

the data later from the same linux system

via ethereal/wireshark from X-windows.

Wireshark is ok for simple task but if you

think about capturing a lot of data for

replay, tcpdump is the way to go.

CCIE security

Gold

Re: Identifying ASA traffic types and individual bandwidth utili

in that case you may as well use openbsd.

where did you get 20gb from anyway?

Silver

Re: Identifying ASA traffic types and individual bandwidth utili

in order to determine traffics type, you need

a lot of data. As a security guy, I would

think 20GB is not that much.

New Member

Re: Identifying ASA traffic types and individual bandwidth utili

Guy's thank you for your prompt responses. I truly appreciate your help. Sniffers are great for looking that the different types of traffic but one of my requirements is bandwidth utilization for each protocol the sniffer would see.

I may be wishing upon a star because the tool that I need would visually display an overlay graph with bandwidth(s) displayed. Any ideas?

New Member

Re: Identifying ASA traffic types and individual bandwidth utili

You need a device like a packeteer...

satya

Green

Re: Identifying ASA traffic types and individual bandwidth utili

ASDM 6 includes a dashboard which includes top sources/destination/services etc.

148
Views
5
Helpful
7
Replies
CreatePlease to create content