Asa Diagnose

Aus xinux.net
Zur Navigation springen Zur Suche springen

Ping

Icmp Ping

  • ping 192.168.240.200
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.240.200, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms

Tcp Ping Syn Reply

  • ping tcp 192.168.240.200 53
Type escape sequence to abort.
No source specified. Pinging from identity interface.
Sending 5 TCP SYN requests to 192.168.240.200 port 53
from 192.168.252.185, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms

Tcp Ping Rst Reply

  • ping tcp 192.168.240.200 25
Type escape sequence to abort.
No source specified. Pinging from identity interface.
Sending 5 TCP SYN requests to 192.168.240.200 port 25
from 192.168.252.185, timeout is 2 seconds:
RRRRR
Success rate is 0 percent (0/5

Tcp Ping with Source

!!!Wichtig - Es muss eine IP aus dem Netz aber nicht die der ASA selbst sein, weill es ansonsten ein Spoofing Deny erzeugt

  • ping tcp 192.168.252.1 53 source 10.0.5.3 53
Type escape sequence to abort.
Sending 5 TCP SYN requests to 192.168.252.1 port 53
from 10.0.5.3 starting port 53, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms

Traceroute

  • traceroute 8.8.8.8
Type escape sequence to abort.
Tracing the route to 8.8.8.8

 1  192.168.252.1 0 msec 0 msec 0 msec
 2  217.5.98.18 20 msec 20 msec 20 msec
 3  217.237.154.142 20 msec 30 msec 20 msec
 4  80.150.170.98 30 msec 30 msec 20 msec
 5  72.14.233.128 30 msec
    72.14.233.114 30 msec
    72.14.233.130 30 msec
 6  8.8.8.8 30 msec 20 msec 30 msec
Abgerufen von „https://xinux.net/index.php?title=Asa_Diagnose&oldid=16374