cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1160
Views
0
Helpful
8
Replies

logs on cisco asa

carl_townshend
Spotlight
Spotlight

hi all, can anyone tell me how to view the realtime logs on the cisco asa using the command prompt rather than the gui ?

8 Replies 8

adamclarkuk_2
Level 4
Level 4

show log

sh processes memory

sh cpu usage

show memory

show xlate (for NAT)

hi there, if I do a show log, would this be the same as the logging on the gui? can you see the logs by doing a term mon and debugging ?

It all depends on what you want carl ?

I want to see the logs of all the things going through my firewall like I do on the gui under the logging section, on the gui I see a live list that moves, can this happen on the cli ?

Then the commands above will help

show xlate will show the translations, show con will show the connections

show log will show what has been built connection wise.

Try the commands and let me know if it's not what you want.

how about the show local-hosts command? is this the same as show conn ?

Hi, By default, does it show all things passing through the device on the gui? or do i need to configure the access list with the log command ?

Hi Carl,

I believe you want to see all traffic leaving an interface / all traffic between two hosts as you can on ASDM.

You can do that by setting up a capture on CLI

  • cap capin int inside match ip host 192.168.1.11 host 192.168.1.10
  • sh cap capin - to display packets
  • clear cap capin - to collect fresh packets
  • no cap capin - to remove

This can geerate alot of traffic be specific what you want to see in the capture you can also do using an ACL

https://supportforums.cisco.com/docs/DOC-17814

Kind Regards,

Zeeshan Siddiqui

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco