Cisco ASA FTD 巡检命令
show version
show inventory
show resource usage
show running-config
show startup-config
show clock
show interface ip brief
show interface
show route
show arp
show ipv6 route
show access-list
show nat
show xlate
show conn count
show service-policy
show asp drop
show cpu
show cpu detail
show memory
show conn count
show failover
show failover history
show failover state
show monitor-interface
show logging
show logging queue
show blocks
show perfmon
show traffic
其中2个命令是查看资源消耗的,列一下输出
show resource usage
show perfmon
firepower# show resource usage
Resource Current Peak Limit Denied Context
Syslogs [rate] 9 43583 N/A 0 System
Conns 72583 7543882 10000000 0 System
Xlates 794 4113 N/A 0 System
Hosts 72 116 N/A 0 System
Conns [rate] 3312 104899 N/A 0 System
Inspects [rate] 5750 206197 N/A 0 System
Routes 129 129 unlimited 0 System
firepower# show perfmon detail
PERFMON STATS: Current Average
Xlates 3/s 37/s
Connections 3365/s 18218/s
TCP Conns 903/s 6542/s
UDP Conns 2421/s 10710/s
URL Access 0/s 0/s
URL Server Req 0/s 0/s
TCP Fixup 0/s 0/s
TCP Intercept Established Conns 0/s 0/s
TCP Intercept Attempts 0/s 0/s
TCP Embryonic Conns Timeout 196/s 1571/s
FTP Fixup 0/s 4/s
AAA Authen 0/s 0/s
AAA Author 0/s 0/s
AAA Account 0/s 0/s
HTTP Fixup 0/s 0/s
VALID CONNS RATE in TCP INTERCEPT: Current Average
N/A N/A
SETUP RATES:
Connections for 1 minute = 3340/s; 5 minutes = 3552/s
TCP Conns for 1 minute = 905/s; 5 minutes = 884/s
UDP Conns for 1 minute = 2393/s; 5 minutes = 2626/s
浙公网安备 33010602011771号