11-21-2011 04:08 PM
we just purchased 2 asa 5585-40's and tried to add them to our lms 3.2 system and we were informed by cisco tac that they were not supported in lms 3.2. since we don't having funding for an upgrade, i was wondering if anyone knew of a work around within lms that could allow me to add the devices so i can use lms for syslog and to fetch the firewall configs on a regular basis, instead of having to setup a seperate syslog server and having to tftp the config's everytime i make a change. if anyone has any ideas they would be greatly appreciated. thanks.
12-08-2011 02:10 PM
Bob,
I have moved this thread to the Network Management section so, you could get help from the experts in lms.
-Kureli
12-08-2011 02:29 PM
LMS 3.2 is likely not going to add support for that model since that version of LMS is end of sales. At best, LMS support for firewalls is limited. Add to that the fact that firewall logs are typically among the most verbose of any network device and it makes LMS's utility even less for ASAs.
Have you considered setting up a simple RANCID installation on a Linux host for managing your config files? RANCID and Linux are free to acquire and it's not too difficult to set it up to poll your devices every hour and archive the configs and alert you to diffs - it will even e-mail you with the diff output. You could even send your syslogs to the same server (thought you'd want to archive them to keep from filling up your file system).
Hope this helps.
12-09-2011 05:19 AM
thanks for your help, i will give rancid a try. i love the band.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide