Cisco ASA Series Cli Configuration Manual page 928
Software version 9.0 for the services module
Hide thumbs
Also See for ASA Series:
- Configuration manual (429 pages) ,
- Getting started (31 pages) ,
- Mount and connect (12 pages)
Table of Contents
Advertisement
Monitoring the ASA Integrated with Cisco TrustSec
Peer IP
-----------------------------------------------------------------------------
2.2.2.1
3.3.3.1
------------------------------------------------------------------------------------------
Peer IP
(dd:hr:mm:sec)
------------------------------------------------------------------------------------------
1234::A8BB:CCFF:FE00:1101
This example displays a detailed information about each SXP connections enabled on the ASA:
hostname# show cts sxp connections
SXP
Highest version
Default password
Default local IP
Reconcile period
Retry open period : 10 secs
Retry open timer
Total number of SXP connections : 2
----------------------------------------------
Peer IP
Local IP
Conn status
Local mode
Ins number
TCP conn password : Set
Delete hold down timer : Running
Reconciliation timer
Duration since last state change: 0:00:00:16 (dd:hr:mm:sec)
----------------------------------------------
Peer IP
Local IP
Conn status
Local mode
Ins number
TCP conn password : Default
Delete hold down timer : Not Running
Reconciliation timer
Duration since last state change: 0:00:05:49 (dd:hr:mm:sec)
This example displays data for all SXP connections:
hostname# show connection security-group
100 in use, 90 most used
TCP inside (security-group mktg(3)) 10.1.1.1:2000 outside (security-group 111)
172.23.59.53:21, idle 0:00:00, bytes 10, flags ...
TCP inside (security-group mktg(3)) 10.1.1.1:2010 outside (security-group 222)
172.23.59.53:21, idle 0:00:00, bytes 10, flags ...
...
This example displays the SXP connection matching specific SGT values for source and destination:
hostname# show connection security-group tag 3 security-group tag 111
1 in use
TCP inside (security-group mktg(3)) 10.1.1.1:2000 outside (security-group 111)
172.23.59.53:21, idle 0:00:00, bytes 10, flags ...
Cisco ASA Series CLI Configuration Guide
1-24
Chapter 1
Local IP
Conn Status
2.2.2.2
On
3.3.3.2
On
Local IP
1234::A8BB:CCFF:FE00:2202
: Enabled
: 2
: Set
: Not Set
: 120 secs
: Not Running
: 2.2.2.1
: 2.2.2.2
: Delete Hold Down
: Listener
: 3
: Not Running
: 3.3.3.1
: 3.3.3.2
: On
: Listener
: 2
: Not Running
Configuring the ASA to Integrate with Cisco TrustSec
Duration (dd:hr:mm:sec)
0:00:02:14
0:00:02:14
Conn Status
On 0:00:02:14
Duration
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
