Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1205
Views
0
Helpful
3
Replies

if we enable IP audit feature in physical interface, will it apply to sub-interface too ?

Go to solution
Senthil Murugan
Level 1
Level 1

‎02-19-2014 02:30 AM - edited ‎03-11-2019 08:47 PM

Hi - I have a query regarding the ip audit option in Cisco ASA, We have enabled IP audit features in outside physical interface and that interface is split into 2 sub-interface. Will it be effect in both sub-interfaces ? Pls clarify.

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Marius Gunnerud
VIP
VIP

‎02-19-2014 02:58 AM

I do not believe that it will affect the subinterfaces.  When assigning the audit policy to an interface you need to specify the interface name and the policy only affects that specific interface even if there are subinterfaces associated with that physical interface.

You can easily check this by issuing the command show ip audit count interface for each interface.  You will see that only the physical interface will have any signatures associated with it while the subinterfaces have none.

--
Please remember to rate and select a correct answer

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

0 Helpful

Go to solution
David White
Cisco Employee
Cisco Employee
In response to Marius Gunnerud

‎02-19-2014 06:31 AM

That is correct.  There is no inheritence of policy based commands from the physical interface to sub-interfaces.

Sincerely,

David.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Marius Gunnerud
VIP
VIP

‎02-19-2014 02:58 AM

I do not believe that it will affect the subinterfaces.  When assigning the audit policy to an interface you need to specify the interface name and the policy only affects that specific interface even if there are subinterfaces associated with that physical interface.

You can easily check this by issuing the command show ip audit count interface for each interface.  You will see that only the physical interface will have any signatures associated with it while the subinterfaces have none.

--
Please remember to rate and select a correct answer

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Go to solution
David White
Cisco Employee
Cisco Employee
In response to Marius Gunnerud

‎02-19-2014 06:31 AM

That is correct.  There is no inheritence of policy based commands from the physical interface to sub-interfaces.

Sincerely,

David.

0 Helpful

Go to solution
Senthil Murugan
Level 1
Level 1
In response to David White

‎02-19-2014 09:53 PM

Thanks. I have verified it. Now i understood.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card