Cisco ASA 5506-X Configuration Manual page 292
Cli
Hide thumbs
Also See for ASA 5506-X:
- Installation manual (46 pages) ,
- Hardware installation manual (26 pages) ,
- Quick start manual (14 pages)
Advertisement
Testing Your Configuration
•
•
•
Test ASA Connectivity Systematically
If you want to do a more systematic test of ASA connectivity, you can use the following general
procedure.
Before You Begin
If you want to see the syslog messages mentioned in the procedure, enable logging (the logging enable
command, or Configuration > Device Management > Logging > Logging Setup in ASDM).
Although unnecessary, you can also enable ICMP debug to see messages on the ASA console as you ping
ASA interfaces from external devices (you will not see debug messages for pings that go through the
ASA). We recommend that you only enable pinging and debugging messages during troubleshooting, as
they can affect performance. The following example enables ICMP debugging, sets syslog messages to
be sent to Telnet or SSH sessions and sends them to those sessions, and enables logging. Instead of
logging monitor debug, you can alternately use the logging buffer debug command to send log
messages to a buffer, and then view them later using the show logging command.
Cisco ASA Series Firewall CLI Configuration Guide
13-4
ICMP ping.
ping [if_name] host [repeat count] [timeout seconds] [data pattern] [size bytes] [validate]
Where:
if_name is the name of the interface by which the host is accessible. If you do not include a
–
name, the routing table is used to determine the interface to use.
host is the IPv4, IPv6, or host name of the host you are pinging.
–
repeat count is how many packets to send. The default is 5.
–
timeout seconds is the number of seconds for each packet to time out if no response occurs. The
–
default is 2.
data pattern is the hexadecimal pattern to use in the packets sent. The default is 0xabcd.
–
size bytes is the length of the packet sent. The default is 100 bytes.
–
validate indicates that you want reply data validated.
–
TCP ping.
ping tcp [if_name] host [port] [repeat count] [timeout seconds] [source host ports]
Where:
if_name is the interface through which the source sends the ping. If you do not include a name,
–
the routing table is used.
host is the IPv4 address or host name of the destination you are pinging. You cannot use TCP
–
ping with IPv6 addresses.
port is the TCP port on the host you are pinging.
–
repeat and timeout have the same meaning as above.
–
source host port indicates the source host and port for the ping. Use port 0 to get a random port.
–
Interactive ping.
ping
By entering ping without parameters, you are prompted for interface, destination, and other
parameters, including extended parameters not available as keywords. Use this method if you have
need for extensive control over the ping packets.
Chapter 13
Troubleshooting Connections and Resources
- Quick Links:
- Table of Contents
Hide quick links:
Advertisement
