Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Command to show current connection on a Cisco PIX 501?

Posted on 2007-11-24
4
Medium Priority
?
5,861 Views
Last Modified: 2010-04-21
Hi there.

I want to know the current connections from the LAN to the internet in the PIX 501, getting this info:

1. Origin IP
2. Destiny IP
3. Bandwidth usage

And that's it!

Thanks!
0
Comment
Question by:CaLoFs79
  • 2
4 Comments
 
LVL 11

Expert Comment

by:bsharath
ID: 20344942
0
 

Author Comment

by:CaLoFs79
ID: 20344947
Not really, I have the manual. I configured already.
But now I just want to check the connections.
0
 
LVL 36

Accepted Solution

by:
grblades earned 1000 total points
ID: 20345115
The PIX does not keep track of the bandwidth usage for each connection. The nearest it does is show the number of bytes transferred.

The most usefull command is probably 'show conn' :-
show conn
6 in use, 6 most used
             TCP out 209.165.201.1:80 in 10.3.3.4:1404 idle 0:00:00 Bytes 11391
             TCP out 209.165.201.1:80 in 10.3.3.4:1405 idle 0:00:00 Bytes 3709
             TCP out 209.165.201.1:80 in 10.3.3.4:1406 idle 0:00:01 Bytes 2685
             TCP out 209.165.201.1:80 in 10.3.3.4:1407 idle 0:00:01 Bytes 2683
             TCP out 209.165.201.1:80 in 10.3.3.4:1403 idle 0:00:00 Bytes 15199
             TCP out 209.165.201.1:80 in 10.3.3.4:1408 idle 0:00:00 Bytes 2688
             UDP out 209.165.201.7:24 in 10.3.3.4:1402 idle 0:01:30
             UDP out 209.165.201.7:23 in 10.3.3.4:1397 idle 0:01:30
             UDP out 209.165.201.7:22 in 10.3.3.4:1395 idle 0:01:30

'show xlate detail' gives some more detail about the direction of the traffic :-
3 in use, 3 most used
Flags: D - DNS, d - dump, I - identity, i - inside, n - no random,
       o - outside, r - portmap, s - static
TCP PAT from inside:10.1.1.15/1026 to outside:192.150.49.1/1024 flags ri
UDP PAT from inside:10.1.1.15/1028 to outside:192.150.49.1/1024 flags ri
ICMP PAT from inside:10.1.1.15/21505 to outside:192.150.49.1/0 flags ri
0
 

Author Closing Comment

by:CaLoFs79
ID: 31410836
Thanks
0

Featured Post

Get Certified for a Job in Cybersecurity

Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses

877 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question