Comparing ASA configs

Unanswered Question
Jul 5th, 2012

Hi All,

I am in the process of re-writing the configuration for an ASA using service groups and a new naming convention. Before implementing the new ACL I would like to ensure that it matches all the rules in the current ACL. Is anyone aware of software which can take two config files and compare them to ensure that they both match up and show any differences in ports allowed and/or IP addresses allowed.

Thanks

Chris

Sent from Cisco Technical Support iPad App

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Average Rating: 0 (0 ratings)
nkarthikeyan Fri, 07/06/2012 - 10:56

You can use compare it software which is a freeware of trial version.... which is a very good comparision tool..... it will show a different color codes if there is any difference.... else it will on the same color code....

https://compare-it.software.informer.com/download/

which is 2 mb in size

c_hullah1 Fri, 02/15/2013 - 03:43

Guys,

I found some software which does the job perfectly and would highly recommend!

I performed a full rewrite on one of our complex firewalls using service object groups and a new naming convention to make the rules easier to read but I wanted the services passing through the firewall to remain the same. The following software allowed me to compare two configurations and highlight any problems.

AthenaFirePAC Client

Thanks
Chris

Actions

Login or Register to take actions

This Discussion

Posted July 5, 2012 at 2:43 PM
Stats:
Replies:7 Avg. Rating:
Views:494 Votes:0
Shares:0
Tags: No tags.

Discussions Leaderboard

Rank Username Points
1 7,861
2 6,140
3 3,170
4 1,473
5 1,446