cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2343
Views
0
Helpful
1
Replies

WARNING: OOB Access-list config change detected - Issue with Firemon

Hi

We use a Firemon management tool that needs to communicate with different ASAs on the company. We have no  problem with most firewalls, but for one of them, Firemon is not able to collect its configuration. Firemon support told us that the tool collects a "show access-list" command from the device, and it's failing because it sees a message on the output that creates a problem. The message is:

 

WARNING: OOB Access-list config change detected. Possible modification from,
 SSH/Telnet sessions or ASDM/CSM. Hence, Access-list XXXXX
 may not be displayed.

 

We have run some tests, exporting a "show access-list" command, and indeed, we can see that message sometimes. But we're sure nobody is modifying the configuration.

 

This is a ASA 5545-X running Version 9.8(2)38. Don't know whether it is a way to disable that, or why we see those messages. I have found some bugs but they're related to lower versions. What can we do to avoid receiving those messages while exporting that "show access-list" command?

 

Thanks!

 

1 Reply 1

Luke Keeny
Level 1
Level 1

Were you ever able to get this resolved?

Thanks.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: