Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2053
Views
0
Helpful
2
Replies

Delete ASDM Location Objects

andymelgui
Level 1
Level 1

‎01-22-2014 03:38 AM - edited ‎03-11-2019 08:34 PM

Hello,

I would like to remove an object configured in ASDM by "asdm location 1.1.1.1 255.255.255.255 inside" command. Sadly, this object "1.1.1.1" stays in several NAT rules and access rules in the configuration so I can't remove this object because it is used in other sites of the configuration.

Please do you know if is there some way to remove this object globally ?

Thanks in advance

Andres

Labels:
0 Helpful
2 Replies 2

Jouni Forss
VIP Alumni
VIP Alumni

‎01-22-2014 03:49 AM

Hi,

There is not much information provided about this command in the Command Reference for ASA.

The document does state that one should NOT add or remove this command.

Here is link to the Command Reference section of this command

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/a2.html#wp1664066

Here is a link to the Command Reference regarding a command that could be used to clear "asdm" related configurations.

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/c2.html#wp2390368

As the document indicates, you should be carefull when issuing the commands as they can affect your ability to use ASDM or affect current sessions. It has an option to only clear the "location" related configurations. I am not sure what their effect is.

I am not sure what generates these commands as I don't see them in my own ASA. Then again I very rarely use ASDM to begin with. I do remember to customer managed ASAs (older ones) have plenty of these commands generated.

- Jouni

0 Helpful

andymelgui
Level 1
Level 1
In response to Jouni Forss

‎01-22-2014 05:17 AM

Hi Jouni,

thanks for your answer. I have tested "clear configure asdm location" in a testing appliance. When the object "1.1.1.1" stays in some access rule, "clear configure asdm location" command does nothing, all the config remains the same. But if that object "1.1.1.1" is not used anywhere, the "clear configure asdm location" removes ALL the objects configured by "asdm location x.x.x.x y.y.y.y interface" command, so finally it wouldn't be a good practice.

So, by now, clear the object in all nat/access rules manually is the only way that I see

Thanks again

Andres

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card