Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Shun query

Running an ASA5520 7.0(8)

Started to experience problems with connectivity between 2 interfaces and one host.

Checking my shuns the ASA show I have an entry similar to this.

shun (net2) 4.4.4.4(server) 0.0.0.0 0 0 0

4.4.4.4 = Public address on one of our servers on Net2. This address is nated to a private IP on the host.

I would like to remove this entry.

no shun 4.4.4.4 - Does not work

How should I do this?

What is different about this shun to the usual ones on the outside public interface?

Any help much appreciated.

Phil

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: Shun query

If you haven't configured the shun manually on the ASA, then it might have been the IPS which is sending the shun towards the ASA to block that particular ip address.

To clear the host from being shun, you can issue the following command:

clear shun

Hope that helps.

1 REPLY
Cisco Employee

Re: Shun query

If you haven't configured the shun manually on the ASA, then it might have been the IPS which is sending the shun towards the ASA to block that particular ip address.

To clear the host from being shun, you can issue the following command:

clear shun

Hope that helps.

374
Views
5
Helpful
1
Replies
CreatePlease to create content