Solved

Command to show current connection on a Cisco PIX 501?

Posted on 2007-11-24
4
5,725 Views
Last Modified: 2010-04-21
Hi there.

I want to know the current connections from the LAN to the internet in the PIX 501, getting this info:

1. Origin IP
2. Destiny IP
3. Bandwidth usage

And that's it!

Thanks!
0
Comment
Question by:CaLoFs79
  • 2
4 Comments
 
LVL 11

Expert Comment

by:bsharath
Comment Utility
0
 

Author Comment

by:CaLoFs79
Comment Utility
Not really, I have the manual. I configured already.
But now I just want to check the connections.
0
 
LVL 36

Accepted Solution

by:
grblades earned 250 total points
Comment Utility
The PIX does not keep track of the bandwidth usage for each connection. The nearest it does is show the number of bytes transferred.

The most usefull command is probably 'show conn' :-
show conn
6 in use, 6 most used
             TCP out 209.165.201.1:80 in 10.3.3.4:1404 idle 0:00:00 Bytes 11391
             TCP out 209.165.201.1:80 in 10.3.3.4:1405 idle 0:00:00 Bytes 3709
             TCP out 209.165.201.1:80 in 10.3.3.4:1406 idle 0:00:01 Bytes 2685
             TCP out 209.165.201.1:80 in 10.3.3.4:1407 idle 0:00:01 Bytes 2683
             TCP out 209.165.201.1:80 in 10.3.3.4:1403 idle 0:00:00 Bytes 15199
             TCP out 209.165.201.1:80 in 10.3.3.4:1408 idle 0:00:00 Bytes 2688
             UDP out 209.165.201.7:24 in 10.3.3.4:1402 idle 0:01:30
             UDP out 209.165.201.7:23 in 10.3.3.4:1397 idle 0:01:30
             UDP out 209.165.201.7:22 in 10.3.3.4:1395 idle 0:01:30

'show xlate detail' gives some more detail about the direction of the traffic :-
3 in use, 3 most used
Flags: D - DNS, d - dump, I - identity, i - inside, n - no random,
       o - outside, r - portmap, s - static
TCP PAT from inside:10.1.1.15/1026 to outside:192.150.49.1/1024 flags ri
UDP PAT from inside:10.1.1.15/1028 to outside:192.150.49.1/1024 flags ri
ICMP PAT from inside:10.1.1.15/21505 to outside:192.150.49.1/0 flags ri
0
 

Author Closing Comment

by:CaLoFs79
Comment Utility
Thanks
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Introduction Many times we come across a slowness or instability between two hosts, and almost always we blame the poor networking guys, just because they're an easy target.  Sometimes we forget that other factors including disk bottlenecks, CPU …
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now