So use it at your own risk and don’t blame me if your users comes running after you wielding pitch forks and torches. NOTE: You will obviously kill all IP-sessions running through the appliance using the clear-commands.Useful commands to be used in conjunction with the packet-tracer is “clear conn” and “clear xlate” to clear connection table and NAT-table. I often use it to verify traffic passing through firewall rules, NAT-rules and VPN, but its uses is not limited to these three common troubleshooting steps. In short, you can inject and trace a packet as it progresses through the security features of the Cisco ASA appliance and quickly determine wether or not the packet will pass. Cisco ASA includes a very nice feature since the 7.2(1)-release packet-tracer.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |