Cisco Firewall :: ASA 5520 / Monitor Largest Outgoing And Incoming Traffic Per Ip In Real Time?

Mar 4, 2013

We have a Cisco ASA 5520 and im looking for a way to monitor largest outgoing and incoming traffic per ip in real time so to know which of my internal computers are using the most of our Internet Line. Is there a way to this through ADSM ? We use version 6.3.

View 1 Replies


ADVERTISEMENT

Cisco Firewall :: ASA 5520 - Solar Winds Real Time Interface / Monitor Through Put Of Port?

Jul 6, 2012

I have an ASA 5520 and I'm using Solar winds real time interface tool to monitor the through put of the port.  It seems I can never get it to use more than 100mb, where should I check?
 
I have run a sh int giga 0/1 and it shows the port is 1000mb full duplex and the I have also checked the other end where it plugs into the LAN and this also says the port is running at 1000mb full duplex.

View 1 Replies View Related

Cisco Firewall :: ASA 5520 - Real-time Log Viewer Filter Not Showing Rule Hits With ACL

Dec 20, 2011

I'm running into this issue on an ASA 5520 running version 8.2(2)9 and ASDM version 6.2(1).
 
I have an ACL denying traffic to a certain IP range and the logging level set to Debugging.  The hit count is rising quite rapidly but when selecting "Show Log" the Real-Time Log Viewer opens with a value of 0x13d0ee2a in the "Filter By" field and no  logs are ever shown.
 
Logging is enabled globally and Logging Filters on ASDM is set to Debugging as well.
 
how I can get the RTLV working?

View 7 Replies View Related

Port Forwarding Working For Incoming Traffic But Not Outgoing?

Feb 6, 2012

I have a licensing server. Other computers need to turn on a program, they send a message to the licensing server, and it responds that they have permission to run.Until today the licensing server was plugged into its own ethernet wall socket and configured with a static IP address. Today I put a router into that wall socket and now the server's plugged into the router.The router (WRT-54G) was set to the static IP - and now the internet on its network works. I set all ports to be forwarded to the server's internal IP address - and now my programs can detect and ping it. But now the server won't send back permissions to use licensed software, or even reply with a list of the software which it can license.

View 1 Replies View Related

Cisco Firewall :: ASA 5520 Cannot Block Incoming Traffic

Dec 12, 2012

I was configure 3 interface on ASA1st - managemetn (only for management)2nd - gig0/0 is connected to internet with real IP3rd - gig0/1 is connected to local networkI was configure routed NAT to internet.But I have problem with restriction incomming traffic to inside interface (ifname is inside)but I can connect to ip address of inside interface from other ip. It is wrong and i can't understand where is my mistake.

View 2 Replies View Related

Cisco Firewall :: ASA 8.2.2 Asdm Real Time Log Viewer Syslog Connection Lost

Feb 10, 2010

I installed a new ASA using 8.2.2 version and ASDM 6.2.5 version in contexts mode.When i enable logging for ASDM as debugging i cannot use the real time log viewer because I have an error "Syslog connection Lost. Try restarting the syslog connection", I tried to reconnect using the icon at the bottom but nothing change.

View 9 Replies View Related

Cisco Firewall :: ASA 5510 Real Time Logs Showing Incorrect Ports

Oct 17, 2012

I have an issue on an ASA 5510 that I have noticed today, when I am using the log viewer all of the information recorded only shows the high end source and destination ports.  For example
 
Source IP 10.10.4.69
Source Port 59886
 
Destination IP 8.8.8.8
Destination Port 59866
 
So what seems to be happening is that I am seeing only half of the connection in the log viewer, I see the side with the high end ports and not the side with the ports the application uses, this example was done with a ping. All my services are working correctly and the client sending the ping gets the response expected, it just seems I have lost the logging display?

View 4 Replies View Related

Cisco Firewall :: ASA 5510 Running 8.3(1) And ASDM 6.4(5) - Real Time Log Viewer Delay / Slow

Feb 15, 2012

I have a new ASA 5510 running 8.3(1) and ASDM 6.4(5)
 
I am trying to use the real time log viewer to troubleshoot some access issues, but I am getting delays of up to 30 seconds or more between my client connecting to the ASA and the corresponding events showing in the RT Log viewer. I am using a simple filter  for source IP as it's quite a busy device.
 
I've seen an article that says to turn off certain logging IDs (such as 304001 from memory) which I have done, but no different.

View 6 Replies View Related

Cisco Firewall :: ASA-5520 - Cannot Hear Outgoing Message

Dec 9, 2009

We have setup the IP phone proxy on our ASA-5520, we had a couple of issues with the initial setup, but nothing major. It has been up and running for a few weeks and basically everything works perfectly just like we designed it except for 1 strange audio issue on outbound calls. We can make a call to anywhere, no problem, if the call is answered, no problem, perfect call setup and good quality 2 way audio. But if the person we called doesn't answer the call and that call goes to their voicemail we loose all audio from that point forward, we do not hear their outgoing message or get any prompts just dead air. The same situation appears to be true for any "recorded" service on the other end of the call.

View 7 Replies View Related

Cisco VPN :: ASA 5520 - Monitor / Trace VPN To VPN Tunnel Traffic?

Sep 7, 2011

I have a two ASA 5520's  and I want to be able to see or monitor the traffic between each tunnel. I am using external addresses but for the sake of this question I will use the following: 1.1.1.1  to 2.2.2.2 .   How can I montior the traffic? 

View 3 Replies View Related

Cisco WAN :: 1841 How To Log Incoming And Outgoing HTTP Request

Dec 12, 2010

I have a CISCO 1841 ROUTER and sins short our internet speed has decreased dramatically , it does not happens all the time , so I am sure it is not the ROUTER.I have put a small router (CISCO WRT 610N) and it was the same.When I look to the UP and DOWNLOAD GRAPH from my ISP , I see really BIG peeks.

View 2 Replies View Related

Cisco Firewall :: Does ASA 8.4 Automatically NAT Outgoing Traffic To Outside Interface By Default

Apr 25, 2012

For ASA v8.3 and above we don't need to use nat-controll, traffic from high security interface can go to low security interface without matching NAT statements.So does the ASA automatically NAT s the outgoing traffic to the outside interface by default?

For example

ASA inside int---10.1.1.1
outside int---120.11.1.1

when the inside hosts try to go out they will be NATed to 120.11.1.1 by default on version 8.3 and later.is that right?

View 7 Replies View Related

Linksys Wired Router :: BEFSR41 V4.3 Won't Log Incoming Nor Outgoing

Jul 15, 2010

I went a bought a brand new model V4.3. I had trouble installing it right from the word GO, but I did successfully get that acomplished, how ever one of the important features "logging of incoming and out going ip" won't work at all. I tried deleting the old logview.exe and rebooting  everything, then installed the "new" logviewer.exe. Well absolutely nothing happens. I have double and triple checked the setting in the router...logging is turned on,  the computer which has the logviewer.exe installed is the confirmed network ip i.e. 192.168.1.101 and I can and do access the internet and all other computers on the network from that computer.

View 9 Replies View Related

Linksys Wireless Router :: WRT160N Can't Hear Any Incoming / Outgoing Sound

Feb 12, 2012

I have a WRT160N router (firmware 1.53.0) that is connected to my broadband. It is giving me problems with VOIP/SIP Traffic.My SIP client connects fine and makes calls, but I cant hear any incoming/outgoing sound. The SIP client works fine when connected directly to broadband. I tried DMZ and that didn't work. Disabled SPI and that didn't work too.

View 2 Replies View Related

Networking :: WZR-HP-AG300H / DD-WRT Incoming And Outgoing Logs Still Empty After Enabling V24sp2

Apr 11, 2012

I'm having a difficult time getting the logging mechanism to work on my DD-WRT Router. I've gone through all the accepted methods for enabling logging: Seems there're others having issues too, but no answers: URLS

Specs:
Router Model WZR-HP-AG300H
Firmware Version DD-WRT v24SP2-MULTI (11/20/11) std - build 17798

I investigated a little further on the router. I enabled ssh, logged in, and found the log the firewall reports too. So I know the logging is performed, it's just not linked up to the incoming/outgoing log web page. Here's the log:

Using username "root".
DD-WRT v24-sp2 std (c) 2011 NewMedia-NET GmbH
Release: 11/20/11 (SVN revision: 17798)

BusyBox v1.19.2 (2011-11-20 17:24:36 CET) built-in shell (ash)
Enter 'help' for a list of built-in commands.

root@rome:~# cd /tmp/var/
root@rome:/tmp/var# ls
lib lock log openser run snmp spool tmp
root@rome:/tmp/var# cd log
root@rome:/tmp/var/log# ls
[Code]....

View 1 Replies View Related

Linksys Wireless Router :: Incoming / Outgoing Logging Broken On E2500 Firmware

Jun 20, 2012

Have a few of these routers internally as well as at various clients.  The incoming and outgoing logs show up blank, even when there are 10-20 computers using the Internet and I know there is traffic being generated.  DHCP and security logging still works fine.  I also have a few E1200s on the latest firmware that are logging just fine... I'm just having issues with the E2500s.

View 6 Replies View Related

Cisco Firewall :: How To Log Incoming Traffic (SMTP) On PIX 515E

Mar 6, 2013

I'm new to ASA's and PIX units. I've setup a few VPN's now but know next to nothing about logging on these units. I read the config guide for the PIX, but cannot figure out how to get a log of incoming SMTP traffic going on the console.Do I need to use a SYSLOG server? I can probably set one up on my laptop.

View 1 Replies View Related

Cisco Firewall :: ASA 5505 Not Allowing Incoming Traffic

Mar 15, 2012

I am trying to switch out a cisco pix 501 firewall with a cisco ASA 5505 firewall.  I am not very familiar with all of the commands for the firewalls and have always relied on a standard command line script that I use when building a new one.  Unfortunately, my script is not working with the 5505.  What I am doing wrong with the following script?  I've masked public IP info with xxx.xxx.xxx and I run it right after restoring the firewall to the factory defaults.  I am able to get out to the internet if I browse directly from one of the servers, but cannot access a web page when trying to browse to it from an outside network. [code]

View 7 Replies View Related

Cisco Firewall :: ASA 5510 - Find The Receiving End Of Incoming Traffic?

Jul 3, 2012

We run a Cisco ASA 5510 and i need to find out how i can find the receving end on the inside of a vlan for traffic comming from outside.
 
ie incomming traffic on port 3937 and are NAT to eth 0/1.10
 
Thers a bunch of traffic on one port 33771 udp going in on 90.191.72.227 how do i trace this to the inside computer ???
  
lets say incomming traffic is on 90.191.72.227 and this is on eth0/0 this ip is NAT to a Vlan on the side for 10.10.0.0 with a subnet of 255.255.255.0

View 1 Replies View Related

Cisco Firewall :: Largest ACL On ASA 5510

Apr 14, 2013

What is the largest ACL (actually object group of networks) I can use on a 5510? I'm blocking traffic to/from certain countries. I have one that is about 4,000 lines long that works fine but would like to add others and not sure what the upper limit is.

View 1 Replies View Related

Cisco Firewall :: ASA 5510 Stops Forwarding Incoming Traffic To Internal Servers?

Dec 5, 2012

Since the power failure two days ago, my -ASA stops forwarding traffic to internal servers, for no apparent reason. Packet trace shows all OK, packet capture buffer stays empty when I try to http into the mail server. The only way to get it working is to change the Outside Ip to the one used for mail, then to change it back. It will work OK for a few hours, then stop, with nothing obvious in the logs.

View 2 Replies View Related

Cisco Firewall :: 5520 ASA To Monitor The Ha Status

Apr 15, 2012

We have a Cisco ASA 5520 in HA (Active - Standby). We monitor the CPU,Memory Utilization and Active Session via SNMP polling.And SNMP trap for linkup ,linkdown and Cold start.Our requirement is to monitor the HA status and whenever there is a change in the HA - Failover we have to get a snmp trap.What are the configuration need to be done on the cisco asa.

View 3 Replies View Related

Cisco VPN :: Monitor Tunnel That Has End Devices ASA 5520 And NetScreen Firewall?

Dec 27, 2011

Monitor a VPN tunnel that has as end devices a Cisco ASA 5520 and a NetScreen Firewall. I'll like to be receive an alert when the VPN is down.

View 1 Replies View Related

Cisco Firewall :: ASA 5520 - Allow Traffic From DMZ To Internet And Block Traffic?

Apr 29, 2012

I have an ASA 5520 with the below config
 
Gi0/0: outside (Internet)
Gi0/1: inside (Internal users)
Gi0/2: DMZ (web servers, ftp, Mail etc..)
 
I have a SMTP relay deployed on the DMZ for mailing. I have also a mail servers installed in the internal lan,
 
I want to allow trafic from dmz to reach internal lan, and i want normally also allow stmp relay from dmz to reach Internet.
 
How can i block trafic from DMZ to reach Internal Lan (instead of smtp) if the to allow trafic from dmz to internet i must put ANY in the policy?
 
For allowing trafic from DMZ to reach Internet, the policy must be DMZ -----> ANY ----->Services., this policy means DMZ can implicity reach Internal Lan?

View 2 Replies View Related

Cisco :: ACS 5.3 / View Real Time Logs For AAA Clients And For ACS Administrator?

Mar 6, 2012

We have below queries regarding new version of ACS 5.3.
 
a) Is it possible to view real time logs for AAA clients and for ACS administrator?

b) Is it possible to track each and every change record for ACS Administrators and sessions in ACS . Ex addition and deletion of commands in command sets. As of now, we are able to see that config has changed by ACS admin but not able to see which commands are changed (Added or Removed)

c) As per user guide of ACS 5.3, we have an option for creating customized reports but unfortunately we are not able to see same option in ACS 5.3 GUI. Need confirmation on the same.

d) Is it possible to do configuration changes for ACS via Command line.

View 1 Replies View Related

Home Network :: Topologies In Real Time Implementation Compare And Contrast Each Other

Apr 26, 2011

Topologies in real time implementation compare and contrast each other?

View 3 Replies View Related

Cisco LAN :: 2651XM / Traffic-export Only Shows Outgoing?

Oct 12, 2012

cisco 2651XM router with WIC1 adsl card and NM-16ESW switch
IOS:  c2600-ipbasek9-mz.124-23.bin
 
I use the following config to export traffic from the adsl card to a fasterthernet port so I can look at the adsl traffic in wireshark on a pc:router(config)#ip traffic-export profile my_rite router(conf-rite)#int FastEthernet 0/0 router(conf-rite)#bidirectional router(conf-rite)#mac-address abcd.efgh.ijkl (mac address of PC) router(conf-rite)#exit router(config)#int dialer0 router(config-if)#ip traffic-export apply my_rite this config works and I can see stuff going on in wireshark but it's only one way. This config only shows traffic going out from my adsl card, but no incoming. There is defintely traffic going both ways because everything about my adsl connection is working perfectly. I've tried using a different fastethernet port, even tried exporting to a different pc but all I see is outgoing ie: source is my public ip address but never as destination . I have bidirectional in the config but it still only shows outgoing. I even tried a different IOS (c2600-adventerprisek9-mz.124-15.T8.bin) but still it doesn't show incoming traffic. Could it be my ISP in some way hiding incoming traffic from view?

View 3 Replies View Related

Cisco Routers :: WRVS4400N - VPN Tunnel Up But No Outgoing Traffic?

Jan 29, 2012

we've buyed a WRVS4400N to create a IPSEC VPN tunnel to our client in order to access some applications.
 
After a while trying to configure the router, we have archieved it and the VPN tunnel is up. We can see the tunnel up from here and from client's side as well.
 
Our client supposendly have created the tunnel in order to access a list of specific IPs in the range 10.113.x.x, but if we try to access this IPs via telnet whe cannot obtain any response.
 
Making a tracert, we obtain...
C:UsersHuexxx>tracert 10.113.56.177
Traza a 10.113.56.177 sobre caminos de 30 saltos como máximo.
1     1 ms     1 ms     1 ms  192.168.0.1
2     *        *        *     Tiempo de espera agotado para esta solicitud.
3     *        *     ^C
 
... and therefor the client doesn't receive any packet at its firewall.
 
I've tried to establish a static route for 10.0.0.0 255.0.0.0 to their remote gateway, but I'm unable to add any entry to static routing list... The router tries to do something, but afterall I cannot see the new entry...
 
What can I do to route the traffic through the tunnel?

View 1 Replies View Related

Protocols / Routing :: Using Port 1 - 80 For All Outgoing Traffic Possible With Application?

Oct 9, 2012

I want to be able to use port 1-80 for all outgoing traffic. I have a VPS outside my home, which can redirect the packets to the prober ports.Is it possible with an application on the computer and VPS? Or is it impossible?

View 1 Replies View Related

WRV54G - Server Cannot Send Outgoing Traffic Through Network

Dec 30, 2011

I cannot get my server to send outgoing traffic through my network. I.e. If i try to connect to any of my services i get a very weak connection. Now, i can still CONNECT, i just don't get any data flow. I cant even PING the server internally, it just times out. Now, regardless of whether i use my internal IP/external domain, i get the same issue. I logged onto my computer and tried a speed test the download was normal (around ~20mbit) but the upload times out.

Here is the fun part, if i connect to the server using a switch, everything works fine! Is it my router or some stupid configuration issue? Router is a WRV54G (I hate this thing). Server is running windows 2008 and has a virtual machine.

View 3 Replies View Related

Cisco Firewall :: ASA 5520 - VPN Traffic Is Getting Dropped Through Firewall

Apr 8, 2011

Our Local Network is behind the CISCO ASA Firewall.Whenever we are accessing to Client VPN server,it is getting connected but after few Minutes (May be 5/10/30 Min),the sessions are terminating. The same traffic through PIX is no issue , only with ASA Firewall. See the following Error and request you give the possible root cause for this.
 
2011-04-09 16:15:09    Local4.Info    172.16.1.68    %ASA-6-302016: Tear down UDP connection 87447908 for OUTSIDE:68.22.26.66/4500 to inside:172.16.9.10/4410 duration 0:27:49 bytes 18653

View 1 Replies View Related

Cisco Firewall :: ASA5580 - How To Configure Traffic Flow Idle Time-out With CSM

Feb 16, 2012

I am looking for the way to define an idle timeout for specific flows on an ASA5580 by using Cisco security manager. For ex I needed to define a specific idle timeout for connections beetween specific devices (Devices in vlan1, Device2 in vlan2).To test it I did following changes by CLI and it works fine.     access-list L1 extended permit ip <@IP1> <mask1> host <@IP2>    class-map CM1        match access-list L1    policy-map PM1        class CM1        set connection timeout idle 02:00:00
 
I try do do the same configuration with CSM in order to be able to manage each changes only by using CSM.So I defined  Access control list, Traffic flow and then I define timeout in CSM --> PIX/ASA/FWSM Platform --> Service Policy Rules  --> IPS, QoS and Connections Rules -> connections settings -> Traffic flow idle time-out. The problem is that each time I deploy the configuration with CSM I loose the timeout config line which is the most important for my application..

View 2 Replies View Related

Cisco Firewall :: Intrusion Prevention Gadgets Display Incorrect Time ASA 5520

Oct 3, 2011

I have an ASA 5520 with the Intrusion Prevention Module.The time displayed on the ASA is correct.The time displayed in all Intrusion Prevention gadgets is ahead exactly 4 hours.Under configuration, Time the Time Zone is correct, Eastern in my case.  The sensor local time on the same page is correct and is grayed out.I only work in the ASDM as I am far from being a CLI person.I don't think the time being off is causing any issues, but it is strange.

View 1 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved