ASA :How to see the connection status
Hi
How to findout the connection is establsished or not in a Firewall from Source to Destination using ASA Firewall(Assume NAT and access-list are proper).What are the commands in ASA can give the details about the connection) ,
Assume my Internal IP is 172.16.X.X
Public IP : 212.242.23.X
Accessing the Public IP using http (port 81) : http://212.242.23.X:81
how cani find the Connection is establshed or not through ASA Firewall
Regards
Ramu
How to findout the connection is establsished or not in a Firewall from Source to Destination using ASA Firewall(Assume NAT and access-list are proper).What are the commands in ASA can give the details about the connection) ,
Assume my Internal IP is 172.16.X.X
Public IP : 212.242.23.X
Accessing the Public IP using http (port 81) : http://212.242.23.X:81
how cani find the Connection is establshed or not through ASA Firewall
Regards
Ramu
Try 'show conn address 115.111.228.3 detailed'
That might give you some more info.
That might give you some more info.
ASKER
If i do the above suggested step the output is showling as below
NEW-TCL-ILL-FW# sh conn address 115.111.228.36 detail
7702 in use, 106426 most used
Flags: A - awaiting inside ACK to SYN, a - awaiting outside ACK to SYN,
B - initial SYN from outside, C - CTIQBE media, D - DNS, d - dump,
E - outside back connection, F - outside FIN, f - inside FIN,
G - group, g - MGCP, H - H.323, h - H.225.0, I - inbound data,
i - incomplete, J - GTP, j - GTP data, K - GTP t3-response
k - Skinny media, M - SMTP data, m - SIP media, n - GUP
O - outbound data, P - inside back connection, p - Phone-proxy TFTP conne
ction,
q - SQL*Net data, R - outside acknowledged FIN,
R - UDP SUNRPC, r - inside acknowledged FIN, S - awaiting inside SYN,
s - awaiting outside SYN, T - SIP, t - SIP transient, U - up,
V - VPN orphan, W - WAAS,
X - inspected by service module
WHAT IS THE MEANING OF 7702 in use, 106426 most used
Regards
ramu
NEW-TCL-ILL-FW# sh conn address 115.111.228.36 detail
7702 in use, 106426 most used
Flags: A - awaiting inside ACK to SYN, a - awaiting outside ACK to SYN,
B - initial SYN from outside, C - CTIQBE media, D - DNS, d - dump,
E - outside back connection, F - outside FIN, f - inside FIN,
G - group, g - MGCP, H - H.323, h - H.225.0, I - inbound data,
i - incomplete, J - GTP, j - GTP data, K - GTP t3-response
k - Skinny media, M - SMTP data, m - SIP media, n - GUP
O - outbound data, P - inside back connection, p - Phone-proxy TFTP conne
ction,
q - SQL*Net data, R - outside acknowledged FIN,
R - UDP SUNRPC, r - inside acknowledged FIN, S - awaiting inside SYN,
s - awaiting outside SYN, T - SIP, t - SIP transient, U - up,
V - VPN orphan, W - WAAS,
X - inspected by service module
WHAT IS THE MEANING OF 7702 in use, 106426 most used
Regards
ramu
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi Ernibeek,
u r always with me and sorry for troubling you with my useless questions but i dont have any source xcept you people as i already shared that i dont want to leave small info about Firewall /VPN as i want to be expertised in that
Regards
Ramu
u r always with me and sorry for troubling you with my useless questions but i dont have any source xcept you people as i already shared that i dont want to leave small info about Firewall /VPN as i want to be expertised in that
Regards
Ramu
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Tks Erniebeek
Regards
Ramu
Regards
Ramu
You're welcome.
It's always nice to encounter someone who is so eager to learn :)
It's always nice to encounter someone who is so eager to learn :)
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks
ASKER
NEW-TCL-ILL-FW# sh conn address 115.111.228.36
9672 in use, 106426 most used
what does it means " 9672 in use, 106426 most used"
regards
ramu