Browsing All Posts filed under »Troubleshootings«

Useful Checkpoint commands

November 25, 2010

2

Checkpoint is not a cli based firewall, the cli is generally (in the daily life) not used. What the admin wants, can do through the GUI. For troubleshooting purposes or just query something there are some useful commands. In this list I tried to collect what I already had to use (or wanted to try […]

Troubleshooting PPPoE on PIX

November 24, 2010

0

This document is not up to date as the firewall is PIX. Maybe the ASA codes have the same command as this old PIX. I did not have time to test it. Use the following commands to check your PPPoE interface: show ip address outside pppoe show vpdn session pppoe show vpdn pppinterface show vpdn […]

Analyse log messages of the firewall

November 24, 2010

0

For the following examples to use you will need unix (awk, grep, sort, uniq,…) commands. TASK1. Filter to the Dual ISP feature’s syslog messages from pix_log.txt file that is a log file for a day. Solution: Log file name: pix_log.txt 1. Collect Dual ISP feature’s syslog messages from Cisco UniverCD: 622001 327001 – 327003 422004 […]

Troubleshooting DOS attacks on PIX / ASA

November 23, 2010

0

1. Identify the attack. 1.1. How did Customer notice the attack? – Slow Internet access – High performance on the attacked device: – local server – the firewall – etc… 1.2. How can we confirm the attack? Depending on the time of the issue we can have an attack: A, happened in the past. We […]

Troubleshooting SLA monitoring on ASA

November 23, 2010

0

On the Cisco ASA Firewall can we configure a backup link, for example a backup Internet link. That means if our Internet access has some problem, we still have a backup link to access the Internet or whatever we want. The configuration is not part of this documentation, it is only useful if there is […]

Troubleshooting ASA high memory issues

November 23, 2010

0

Troubleshooting memory issues requires TAC support to get accurate result. 1. To identify a memory leak on pix, get the periodic (hourly) output of “show memory detail”. Send this to the TAC, they will see the memory utilisation divided per block size. Example: pixfirewall(config)# show memory detail Free memory:                     201811608 bytes (75%) Used memory: Allocated […]