Documente Academic
Documente Profesional
Documente Cultură
and teardown)
Document ID: 113602
Contributed by Jay Johnston, Cisco TAC Engineer.
Jul 17, 2012
Contents
Introduction
Prerequisites
Requirements
Components Used
Conventions
ASA TCP Connection Flags
TCP Connection Flag Values
Related Information
Introduction
This document provides information about Adaptive Security Appliance (ASA) TCP connection flags.
Prerequisites
Requirements
Readers of this document should have knowledge of these topics.
Basic knowledge of the TCP Communications Protocol
Basic knowledge of the ASA Command Line (CLI)
Components Used
The information in this document is based on ASA version 8.4.
Conventions
For more information on document conventions, refer to Cisco Technical TipsConventions.
TCP
TCP
TCP
TCP
TCP
TCP
TCP
TCP
outside
outside
outside
outside
outside
outside
outside
outside
The next picture shows the ASA TCP Connection flags at different stages of the TCP state machine. The
connection flags can be seen with the show conn command on the ASA.
Additionally, in order to view all of the possible connection flags issue the show connection detail command
on the command line:
ASA# show conn detail
84 in use, 1537 most used
Flags: A awaiting inside ACK to SYN, a awaiting outside ACK to SYN,
B initial SYN from outside, b TCP statebypass or nailed, C CTIQBE media,
D DNS, d dump, E outside back connection, F outside FIN, f inside FIN,
G group, g MGCP, H H.323, h H.225.0, I inbound data,
i
k
O
q
R
s
V
X
Related Information
Technical Support & Documentation