My Netops section runs huge groups and huge numbers of groups and I often receive tickets relating to specific IP addresses that are part of larger groups, the names of which I need to begin troubleshooting.
Is there a pipe command I can use to quickly sort which object groups a given network object or port belongs to?
At this point I have to run a search for all access-list references to a given network, then cross-reference. I'd rather just have the given host or network and type a single command that will give me the names of all the object-groups this network is associated with.
"| i " obviously doesn't do it because it'll only show me the actual line of the network inside the object-group without the name of the group itself (though this does tell me how many times that line appears, and so how many groups exist that include that line specifically, though not necessarily the network if I'm working with a host). There's no "| s " and there's no stop at version of the | command on an ASA, so I'm at something of a loss here.
Any help would be most appreciated.
show run object-group | i object-group | x.x.x.x
Will display all object group names followed by the IP address in question for each group it belongs to.