Cisco Cisco ASA 5510 Adaptive Security Appliance Leaflet

4-132

Cisco ASA Series 명령 참조 , S 명령

4장 show bgp through show cpu 명령

show conn

다음 예에서는 ID 방화벽 기능을 위한 연결을 표시하는 방법을 보여 줍니다.

ciscoasa# show conn user-identity ?

exec mode commands/options:

all Enter this keyword to show conns including to-the-box and from-the-box

detail Enter this keyword to show conn in detail

long Enter this keyword to show conn in long format

port Enter this keyword to specify port

protocol Enter this keyword to specify conn protocol

state Enter this keyword to specify conn state

| Output modifiers

ciscoasa# show conn user-identity

1219 in use, 1904 most used

UDP inside (www.yahoo.com))10.0.0.2:1587 outside (user1)192.0.0.2:30000, idle 0:00:00,

bytes 10, flags -

UDP inside (www.yahoo.com)10.0.0.2:1586 outside (user2)192.0.0.1:30000, idle 0:00:00,

bytes 10, flags –

UDP inside 10.0.0.34:1586 outside 192.0.0.25:30000, idle 0:00:00, bytes 10, flags –

…

ciscoasa# show conn user user1

2 in use

UDP inside (www.yahoo.com))10.0.0.2:1587 outside (user1)192.0.0.2:30000, idle 0:00:00,

bytes 10, flags –

show conn long zone

명령에 대한 다음 출력을 참고하십시오.

ciscoasa# show conn long zone zone-inside zone zone-outside

TCP outside-zone:outside1(outside2): 10.122.122.1:1080 inside-zone:inside1(inside2):

10.121.121.1:34254, idle 0:00:02, bytes 10, flags UO