cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

457
Views
10
Helpful
2
Replies
Highlighted

Cisco ASA - CDP and lldp not supported -- looking for alternatives

Hello Guys @Rob Ingram  @balaji.bandi   @Richard Burts  @Marvin Rhoads  @Mohammed al Baqari  @Rahul Govindan 

 

I want to know the Physical Topology and want to find the directly connected devices with the ports, CDP and lldp is not supported on Cisco ASA. Please advice how i can find it?

 

Thanks

2 ACCEPTED SOLUTIONS

Accepted Solutions
Highlighted
VIP Mentor

ASA has Limited ports, So you have limited neighbours, it's going to be connected to inside or outside switch or ISP edge router.

 

You are managing the network, you should have physical topology always - or ask someone to audit what connected.

 

below suggestion can only to give you idea learning by the ARP or routing table. (this based on again what mode ASA running).

 

show arp

show route

 

 

BB
*** Rate All Helpful Responses ***

View solution in original post

Highlighted

Tools like CDP and LLDP can be very useful to help some network devices determine some characteristics of devices to which they are connected. Unfortunately the security posture of the ASA led Cisco to decide that those tools would not be supported on the ASA. The rationale probably is that if CDP and/or LLDP ran on the ASA it would allow connected devices to learn things about the ASA, and for a security device that is not good.

HTH

Rick

View solution in original post

2 REPLIES 2
Highlighted
VIP Mentor

ASA has Limited ports, So you have limited neighbours, it's going to be connected to inside or outside switch or ISP edge router.

 

You are managing the network, you should have physical topology always - or ask someone to audit what connected.

 

below suggestion can only to give you idea learning by the ARP or routing table. (this based on again what mode ASA running).

 

show arp

show route

 

 

BB
*** Rate All Helpful Responses ***

View solution in original post

Highlighted

Tools like CDP and LLDP can be very useful to help some network devices determine some characteristics of devices to which they are connected. Unfortunately the security posture of the ASA led Cisco to decide that those tools would not be supported on the ASA. The rationale probably is that if CDP and/or LLDP ran on the ASA it would allow connected devices to learn things about the ASA, and for a security device that is not good.

HTH

Rick

View solution in original post

Content for Community-Ad