I just need the basics, I am using show ip nat command and see some "suspicious" connections to one of my servers. Therefore, I created an access list 199 that matched the suspicious activity and used the debug ip packet 199. However I am getting no output. I am using a telnet connection. I have never used these debug commands, does the output go to the serial port?
If so is there a way to change the output to the telnet session?
Is there a better way to see the contents of a specific set of packets?
However, the output is not very helpful. I was hoping to actually see the packet itself. I can see that something is making a connection to one internal server. However, nothing is showing in netstat -a on the server so I was hoping to get more detailed info on what these connections are doing.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...