How do i check and monitor the banwidth on ASA 5510/5520? HELP PLLEASE

How do i check how much bandwidth i am getting from ISP?
Customers are complaining that there internet is running slow?

FW01# show interface ip brief
Interface                  IP-Address      OK? Method Status                Protocol
Ethernet0/0                x.x.x.x(public ip)    YES CONFIG up                    up
Ethernet0/1        YES CONFIG up                    up
Ethernet0/2          YES CONFIG up                    up
Ethernet0/3          YES CONFIG up                    up
Management0/0     YES CONFIG down                  down

 show interface ethernet 0/0
Interface Ethernet0/0 "outside", is up, line protocol is up
  Hardware is i82546GB rev03,
BW 1000 Mbps
, DLY 10 usec
        Auto-Duplex(Full-duplex), Auto-Speed(1000 Mbps)
        MAC address 503d.e582.ea8c, MTU 1500
        IP address x.x.x.x, subnet mask
        264764862 packets input, 248853547927 bytes, 0 no buffer
        Received 194889 broadcasts, 0 runts, 0 giants
        0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
        0 L2 decode drops
        218860466 packets output, 29784742938 bytes, 0 underruns
        0 output errors, 0 collisions, 0 interface resets
        0 late collisions, 0 deferred
        0 input reset drops, 0 output reset drops, 0 tx hangs
        input queue (blocks free curr/low): hardware (255/230)
        output queue (blocks free curr/low): hardware (255/229)
  Traffic Statistics for "outside":
        264764862 packets input, 243922605791 bytes
        218860466 packets output, 24885425535 bytes
        135924 packets dropped
      1 minute input rate 22 pkts/sec,  4617 bytes/sec
      1 minute output rate 25 pkts/sec,  6004 bytes/sec
      1 minute drop rate, 0 pkts/sec
      5 minute input rate 68 pkts/sec,  61484 bytes/sec
      5 minute output rate 57 pkts/sec,  10495 bytes/sec
      5 minute drop rate, 0 pkts/sec

Customer has 10 MB line why does it say BW 1000 mbps

        received (in 2004008.264 secs):
                523865942 packets       105549749479 bytes
                2 pkts/sec      52000 bytes/sec
        transmitted (in 2004008.264 secs):
                692129216 packets       340991133323 bytes
                0 pkts/sec      170000 bytes/sec
      1 minute input rate 300 pkts/sec,  32903 bytes/sec
      1 minute output rate 454 pkts/sec,  323929 bytes/sec
      1 minute drop rate, 0 pkts/sec
      5 minute input rate 409 pkts/sec,  41888 bytes/sec
      5 minute output rate 663 pkts/sec,  500774 bytes/sec
      5 minute drop rate, 0 pkts/sec

what can i tell from show traffic command ?

What are the tools i need to monitor the link ?
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Don ThomsonCommented:
Monitoring the bandwidth via the built in information as in the above examples, doesn't really tel you what the actual bandwidth you are getting from the ISP.  So many factors will affect the results.  

We generally use something like  to find out what the ISP is providing. By taking readings from this test at random intervals, you can get a reasonably accurate measurement.  The best time to take the readings is in the off hours when clients are most likely not using the internet.  

We get clients saying that their internet is slow during certain periods during the day.  We usually ask whether people in the offices are using on-line music sources like radio stations etc. All it takes to cripple your bandwidth is for 3 or 4 people to be streaming audio or video.  Most clients will say "Yes so and so always has his favorite radio stations on " When we explain that this is reducing their overall bandwidth, they usually tell us that there is nothing they can or will do about that.

Some clients are using DSL - others are using broadband. With DSL that bandwidth available is generally the same all the time as you have a direct - unshared pipe back to the main provider.  Broadband is usually shared amongst a large number of users in a geographical area.  The total Aggregate bandwidth for broadband is normally much larger than DSL lines but most broadband ISPs restrict the individual bandwidth to the clients.  So you may have 500 meg of broadband download capability but you as a client can't use more than say 5 mbps.  So if the ISP has 1000 clients on a physical leg then if EVERYONE was using the internet at the same time your individual speed would be reduced to 500 Kbps. The ISPs are counting on not everyone being on at the same time.   The same is actually true of DSL clients lines. They may be provisioned for 5Mbps  but if the ISP has 500 Mbps  for a 1000 clients then the same situation occurs.  The only difference is that with the DSL you are sharing the BIG pot  and with Broadband you are really only sharing with your neighbors.

Things like downloading emails with large attachments, streaming audio and video, downloading large programs from the internet, or even doing Microsoft updates will all contribute to your available bandwidth.  

The only system I have seen that doesn't seem to be affected is the fiber connections. The ones we have seen at client locations are typically 50 Meg Down and 20Meg up.  Stuff like .net updates take less then a minute to download.  It's not cheap but most clients who have installed it and have reasonably new hardware/PCs find that the productivity of the employees goes up by about 15-25%  - Pays for the monthly Fiber charge in about 2 days
mohannitinAuthor Commented:

Big thanks for the big reply, however i am looking for solutions which i can show it to management , kinda graphs that

this is the bandwidth you are getting from ISP
these are the drops/errors on interfaces
these are the top 10 users or PCs taking bandwidth
these are the applications music /Video/stream talking all the bandwith

i want to know what can i interpret from the commands which i have mentions earlier.

Nitin Mohan
Generally, this kind of monitoring is done at the router rather than firewall.

You can use ASDM to show management what is going on.

Alternately, enable netflow on lan and wan ports and use something like ntop to capture traffic info.

The 1000mbps info you see is the interface speed at which it is connected to the upstream port. In this case it's a gigabit nic.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Enabling SNMP on the firewall and deploying a network management system such as
Zenoss, NAgios, OPENNMS, or Solarwinds (many more) can pull interface stats off any snmp speaking device including your firewall.

Netflow is good for overall network visibility but if you want interface stats like utilization over time, trending etc ... use one of the applications above.

harbor235 ;}
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Network Analysis

From novice to tech pro — start learning today.