To be precise, I want to know how much of the passed traffic is in the VPN tunnels, how much is http, how much is email, how much is FTP etc..
Any suggestions welcome, no matter how lateral
This is just personally opinion and practice, thats the beauty of democracy I guess:) , have not played much with SNMP on ASA yet, but my strategy is IOS netflow and it is free, I am able to use netflow behind ASAfws in internal edge router right before geting outbound via asa inside interface.
I can capture via netflow source Ips/destination ips engaged in tunnels and respective tcp ports, the downside is that you would have to do the math to get a proximate traffic brakedown and compare it with the total bandwidth of your outbound links.
I believe Cisco has security management apps so I read like Cisco Security manager, but I have not used it, I cannot comment on it but here is a link for detail info.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...