comp.security.firewalls archive
Re: Showing PIX traffic
Date: Tue Feb 28 2006 - 02:46:48 CET
In article <yYGdnfqNYekcOp7ZRVn-og@comcast.com>,
Jon Doe <jdoe@comcast.net> wrote:
>"Walter Roberson" <roberson@hushmail.com> wrote in message
>news:uHwMf.75981$B94.36134@pd7tw3no...
>>>I know I can use "show access-list" to show hit counts, but what's a
>>>command
>>>I can type to show a destination address (on my side), who's trying to hit
>>>it (from the outside), and if the traffic was allowed or denied without
>>>leaving the console?
>> There isn't one. But you can get the 2/3 of that by using 'capture'
>> with an appropriate ACL.
>Thanks for your reply.... I did use 'capture' and at least I could see
>packets, but I guess there's no way to see whether it was allowed or denied.
If you ran captures against both interfaces, then if you see the packet
in both capture logs (after appropriate nat'ing) then it was allowed ;-)
Received on Mon May 1 00:53:34 2006