Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

traffic passed on PIX

Hi,

Can someone tell me if i need to check the following traffic is being passed on the PIX?

Source: x.x.x.246

destination: 172.18.46.75

what is the command to figure out on PIX?

& also need to check for hits on the access-list for:-

access-list acl-test permit tcp host grp1 host zb-nat object-group tcp_ports

please advise with the appropriate commands to run on PIX.

Thanks in advance.

Vin

3 REPLIES
Hall of Fame Super Blue

Re: traffic passed on PIX

Vin

"sh conn" will show you all the current connections going through the firewall and you can look for specfic connections -

http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/s2_72.html#wp1179782

"sh access-list acl-test" should show you the hits per line.

Jon

New Member

Re: traffic passed on PIX

appreciate for your timely response.

But can't we use capture command on PIX from source to destination?

Hall of Fame Super Blue

Re: traffic passed on PIX

If you want to capture the actual traffic rather than just see if there is a connection then yes you could use the capture command to actually view the packets.

Jon

121
Views
0
Helpful
3
Replies