Recently had to use this (useful?) feature to help a customer with an asymmetric traffic flow via an ASA. The ASA would only see the out bound traffic from a host with the
SNMPWALK is a great too for grabbing SNMP oject identifier values (OIDs). To see how to install it see this post here. Mostly I use it for checking various single OID values but
Just a quick post about using the pipe (|) command on Cisco devices to help format the output of any command. Add the pipe to any show command then ? can show the available options.
Exported from Cacti 0.8.7e (including all dependencies) and made using a Cisco 5520 ASA running 8.4(1). OIDs used IPSEC VPN count - .126.96.36.199.4.1.9.
This was done using Ubuntu server 10.04 although everything is compiled from source so the commands should be very similar on any linux box. There are also example configs for Cisco ASA
Quite a useful feature on Cisco Pix & ASAs is the ability to capture packets and then analyse it with wireshark if needed. The following config sets up the capture for all traffic