09-02-2022 08:46 AM
Hi All
On ASA 5516 with 6.2.3.6 is there any limit on creating network object or network groups and assigning them to security policies?
We need to add, to an existing block rule, more than 950 IP addresses ( as hosts) and then assign them to a policy
Can it be done somehow with a script?
Hope you can help
Regards
09-02-2022 10:05 AM
See if this post in the Cisco forums helps. When you open the link scroll down to the highlighted post. I'm looking at another source as well
09-02-2022 12:07 PM
@beconnect if you have the threat license you can create a Security Intelligence Network List of IP addresses to block, which would be a text file of the IP address you just upload - this would be the quickest option.
6.2.3.6 is very old, I'd recommend upgrade, the 5516 supports up to version 7.0.x
02-08-2023 01:53 PM
Hi Rob
We really need to add more than 2000 IP to block.
We already purchase threat license. So we are going to upgrade to 7.0
Is the update smooth to 7.0 ? any concerns?
Thanks for the help
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide