Feeds:
Posts
Comments

Posts Tagged ‘Cisco ASA Flags’

Cisco ASA Connection Flags

Have you ever run the show connection command on a Cisco firewall and wondered what the connection flags meant? Are you frustrated by your attempts to find a list of them on Cisco’s website? Never fear. Here is a list of the flags along with their meanings. This is probably more for my sake than anyone else, but if it helps one person out there, I will feel as though I have made a positive contribution:
a – awaiting outside ACK to SYN
A – awaiting inside ACK to SYN
B – initial SYN from outside
C – Computer Telephony Interface Quick Buffer Encoding (CTIQBE) media connection
d – dump
D – DNS
E – outside back connection
f – inside FIN
F – outside FIN
g – Media Gateway Control Protocol (MGCP) connection
G – connection is part of a group
h – H.225
H – H.323
i – incomplete TCP or UDP connection
I – inbound data
k – Skinny Client Control Protocol (SCCP) media connection
m – SIP media connection
M – SMTP data
O – outbound data
p – replicated (unused)
P – inside back connection
q – SQL*Net data
r – inside acknowledged FIN
R – outside acknowledged FIN for TCP connection
R – UDP RPC
s – awaiting outside SYN
S – awaiting inside SYN
t – SIP transient connection
T – SIP connection
U – up

Read Full Post »

%d bloggers like this: