<div>
All of them. Somebody, somewhere is always scanning your outside interface trying every port. <br />
If you want to be flooded with information, just start logging everything that gets denied by turning on ip audit.<br />
&nbsp;ip audit attack action alarm &nbsp;&lt;== send syslog message<br />
&nbsp;ip audit info action alarm<br />
&nbsp;ip audit interface outside<br />
<br />
sho ip audit interface outside<br />

</div>


All of them. Somebody, somewhere is always scanning your outside interface trying every port.
If you want to be flooded with information, just start logging everything that gets denied by turning on ip audit.
 ip audit attack action alarm  <== send syslog message
 ip audit info action alarm
 ip audit interface outside

sho ip audit interface outside


<div>
mmm -- i already have my syslog server setup, do i need to tell the pix which syslog server to use with the above commands or will it just take the current ones?<br />
<br />
what does sho do?
</div>


mmm -- i already have my syslog server setup, do i need to tell the pix which syslog server to use with the above commands or will it just take the current ones?

what does sho do?

<div>
logging on<br />
logging host<br />
<br />
Use these commands and give the ip address in the second command to enable logging onto a syslog client. Get Kiwi Syslog (free) if you don't have one.<br />
<br />
Cheers,<br />
Rajesh
</div>


logging on
logging host

Use these commands and give the ip address in the second command to enable logging onto a syslog client. Get Kiwi Syslog (free) if you don't have one.

Cheers,
Rajesh

<div>
sho = shortcut for show<br />

</div>


<div>
the ip audit interface outside is an invalid command. &nbsp;i tried ip audit interface outbound which is the name of my interface still no good.
</div>


the ip audit interface outside is an invalid command.  i tried ip audit interface outbound which is the name of my interface still no good.

<div>
<div class="content wysiwyg-content">
is there a way to monitor what ports ppl from the outside world are trying to access from the cisco pix 506e?<br />
<br />
michael
</div>
</div>


is there a way to monitor what ports ppl from the outside world are trying to access from the cisco pix 506e?

michael

how to monitor incoming traffic through a certain port cisco pix 506e

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Software Firewalls

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).