Solved

CLI of Cisco ASA firewall

Posted on 2011-09-07
5
908 Views
Last Modified: 2012-05-12
#terminal monitor command in my asa ia not capturing any traffic.....what should i enable to capture the traffic using this command.

i tried the follwoing

(config)#logging enable
(config)#terminal monitor
0
Comment
Question by:Crazycrux
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 4

Expert Comment

by:denver218
ID: 36497632
ciscoasa#show logging
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 36498005
Logging console info
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 36498021
Or any other from debug to alert.
Just do a: logging console ?
Then you'll see the options.
0
 
LVL 2

Accepted Solution

by:
genie4all earned 25 total points
ID: 36499565
The terminal monitor only really affects the vty that you are currently telnetted or ssh'd into.  "terminal monitor" to enable you to see "logging monitor" from telnet.  "terminal no monitor" to disable it.  Console is on by default, but can be disabled.  The logging level of the console is not necessarily what you see because each level is configured independently.  A "show logging" will show you the level per logging destination.

logging monitor will not show anything on your console. try debugging something (e.g. execute debug telnet or debug ssh and try to ssh / telnet from a different machine to your device)
0
 

Assisted Solution

by:mahuen
mahuen earned 25 total points
ID: 36501959
The better way to get a capture is using the command "capture".

you have tu create an access-list with any name like "acl-in", then you have to create a capture with a name, associate it with an interface and you access-list:

access-list acl-in permit tcp 10.20.30.0 255.255.255.0 200.72.66.0 255.255.255.248 eq ftp

in the ingress interface
capture interesting-traffic-in access-list acl-in interface inside

and in the egress interface for example:
capture interesting-traffic-out access-list acl-in interface outside

then you can copy the capture and save it like a pcap file and open it with wire shark.

copy /pcap capture:interesting-traffic-out flash:interesting-traffic-out


usefull not?
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
NAT Public IP through a VPN 17 78
GBIC "Gi0/25 notconnect 1auto auto unknown" 3 56
snmp v2 configuration on a switch 3 39
Cisco VOIP Question 1 28
Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question