Specifications

ManualsBrandsCisco ManualsHome building and DecorPIX 525

5-9

Cisco Security Appliance Command Line Configuration Guide

OL-6721-01

Chapter 5 Adding and Managing Security Contexts

Monitoring Security Contexts

Real Interfaces: GigabitEthernet0.10, GigabitEthernet1.20,

GigabitEthernet2.30

Mapped Interfaces: int1, int2, int3

Flags: 0x00000011, ID: 2

Context "system", is a system resource

Config URL: startup-config

Real Interfaces:

Mapped Interfaces: GigabitEthernet0,

GigabitEthernet0.10, GigabitEthernet1, GigabitEthernet1.10,

GigabitEthernet1.20, GigabitEthernet2, GigabitEthernet2.30,

GigabitEthernet3

Flags: 0x00000019, ID: 257

Context "null", is a system resource

Config URL: ... null ...

Real Interfaces:

Mapped Interfaces:

Flags: 0x00000009, ID: 258

See the Cisco Security Appliance Command Reference for more information about the detail output.

The following is sample output from the show context count command:

hostname# show context count

Total active contexts: 2

Viewing Resource Usage

From the system execution space, you can view the resource usage for each context and display the

system resource usage. Resources include concurrent connections, Telnet sessions, SSH sessions, hosts,

NAT translations, and for single mode, IPSec sessions.

From the system execution space, view the resource usage for each context by entering the following

command:

hostname# show resource usage [context

context_name

| top

| all | summary | system]

[resource {

resource_name

| all}] [counter

counter_name

[

count_threshold

]]

By default, all context usage is displayed; each context is listed separately.

Enter the top n keyword to show the contexts that are the top n users of the specified resource. You must

specify a single resource type, and not resource all, with this option.

The summary option shows all context usage combined.

The system option shows all context usage combined, but shows the system limits for resources instead

of the combined context limits.

The resource names include the following values. See also the show resource type command for a

complete list. Specify all (the default) for all types.

• conns—TCP or UDP connections between any two hosts, including connections between one host

and multiple other hosts.

• hosts—Hosts that can connect through the security appliance.

• ipsec—(Single mode only) IPSec sessions.

• ssh—SSH sessions.

• telnet—Telnet sessions.

• xlates—NAT translations.