02-25-2010 11:04 PM - edited 03-11-2019 10:15 AM
Hi, I have a 200 pages of configuration of ASA , and i have to map the existing configuration to the new setup. There are around 100 pages of network objects that were created during last 2-3 years. Not all of these network objects are being used in the ACLs. I don't want to use these network objects in my new configuration, but how can i identify (smartly ) that which specific network objects should i skip?
regards,
Mohsin
02-26-2010 12:27 PM
you can do "sh run | i
Also you can use ASDM that has a "where used" option in the object groups.
I hope it helps.
PK
03-01-2010 12:59 AM
It require manual validation using CLI
- issues the command sh run object-group network or sh run object-group service to knw the list of object group configured
- issue the command "sh run | i
- if you have no ACL listed, while using the above command; then there is no ACL configured
However, this is not the smartest way..!!
regards,
ssoc support
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide