Cisco Systems and the ASA Services Module Manual De Usuario

cxsc-msg                1          0        1        0        1          0

The following is sample output from the show conn detail command:

ciscoasa# show conn detail 

0 in use, 105 most used

Flags: A - awaiting inside ACK to SYN, a - awaiting outside ACK to SYN,

       B - initial SYN from outside, b - TCP state-bypass or nailed, C - CTIQBE media,

       D - DNS, d - dump, E - outside back connection, F - outside FIN, f - inside FIN,

       G - group, g - MGCP, H - H.323, h - H.225.0, I - inbound data,

       i - incomplete, J - GTP, j - GTP data, K - GTP t3-response

       k - Skinny media, M - SMTP data, m - SIP media, n - GUP

       O - outbound data, P - inside back connection, p - Phone-proxy TFTP connection,

       q - SQL*Net data, R - outside acknowledged FIN,

       R - UDP SUNRPC, r - inside acknowledged FIN, S - awaiting inside SYN,

       s - awaiting outside SYN, T - SIP, t - SIP transient, U - up,

       V - VPN orphan, W - WAAS,

       X - inspected by service module

TCP outside 208.80.152.2:80 inside 192.168.1.20:59928, idle 0:00:10, bytes 79174, flags 

XUIO

To configure and view packet captures for the ASA CX module, enter one of the following commands:

Captured packets contain an additional AFBP header that your PCAP viewer might not understand; be 
sure to use the appropriate plugin to view these packets.

To enable ASA CX debugging, enter the following command:

 name interface asa_dataplane 

Captures packets between ASA CX module and the ASA on the 
backplane.

Copies the capture file to a server.

Shows the capture at the ASA console.

[error | event | message]

Enables debugs at error, event, or message level.