Normally we are facing abnormal traffic targeting specific servers. My question is How can I know which private IP address is targeted since we are using Dynamic NAT on Cisco ASA 5508 Firewall?
Regards
cisco-asafirewallSecurity
Normally we are facing abnormal traffic targeting specific servers. My question is How can I know which private IP address is targeted since we are using Dynamic NAT on Cisco ASA 5508 Firewall?
Regards
Best Answer
I'm not entirely sure if I understand your question, but I believe you want to take a look at the
show xlate
command.For example:
You can pipe the output to
include
to filter on the IP addresses in question:Or you can narrow the scope with the global, gport, interface, local, lport options.
Hope this helps!