Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4334
Views
0
Helpful
3
Replies

ASA ACL Export

fatalXerror
Level 5
Level 5

‎06-29-2018 02:04 AM - edited ‎02-21-2020 07:56 AM

Hi Guys,

Need some help to export ACL from my ASA.

I have a lot of ACLs which uses groups also, I tried to use ASDM to export in CSV but the group name is showing instead of the IP address.

You know any ways how to do it?

Thanks

Labels:
0 Helpful
3 Replies 3

Seb Rupik
VIP Alumni
VIP Alumni

‎06-29-2018 02:14 AM

Hi there,

The command sh access-list will expand any host/ service groups you have defined in the ACLs and display the IP addresses / port numbers.

 

You should be able to copy this output from the terminal and parse it as a CSV.

 

cheers,

Seb. 

 

0 Helpful

fatalXerror
Level 5
Level 5
In response to Seb Rupik

‎06-29-2018 02:21 AM

Hi Seb,

Thanks for the feedback.

If I parse it from text to csv format, does it by column or just in 1 column because I need to be formatted by column? (e.g. source = 1 column, destination = 1 column)

Thanks

0 Helpful

Seb Rupik
VIP Alumni
VIP Alumni
In response to fatalXerror

‎06-29-2018 02:52 AM

The position of subnet ID and mask could be potentially be different for each expanded ACE depending on the composition of the rule (ie including source ports?).

I suggest you take the output and delimit by whitespace. You may need to shift some rows left&right to get the whole table aligned correctly.

 

cheers,

Seb.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card