Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1667
Views
0
Helpful
2
Replies

Deleting a Logical Interface removes partly ASA conf

FlorianBerthelot
Level 1
Level 1

‎10-22-2013 10:47 PM - edited ‎03-11-2019 07:55 PM

Hi,

I am running asa 8.4(3) and asdm 6.4(7).

I have a serious issue when i delete a logical interface via asdm, it seems like a big part of the asa configuration disapear as well, and then loose conenctivity.

.

I have removed manually all the configuration associated to this interface, either in the firewall and routing sections. A double-check on the conf file shows that there are NO configuration left associated with this interface.

So I deleted it using ASDM, and then the worse happened, i loose part of all ASA configuration.

A copy paste or a backupe conf allowed me to roll back, and according to the console looks like MOST of the asa conf was gone.

If you have any idea,  any experience or know any related bugs, i would appreciate your help!

Best regards

Florian

Labels:
0 Helpful
2 Replies 2

Jouni Forss
VIP Alumni
VIP Alumni

‎10-23-2013 08:00 AM

Hi,

I would suggest doing it  straight from the CLI instead of ASDM. I have never trust the ASDM to  give an accurate information about changes.

Could you also tell us the configuration of the actual interface that you removing?

I would also suggest on the ASDM  side that you enable the preview of the commands sent to the ASA so you  can see exactly what commands the ASDM is going to issue on the ASA.

Removing an interface that holds  a "nameif" should not remove anything else other than configurations  referring to that interface. I wonder if you are actually changing  something related to interface configuration that  will affect more interfaces than just the one you are intending to  change/remove.

- Jouni

0 Helpful

FlorianBerthelot
Level 1
Level 1
In response to Jouni Forss

‎10-30-2013 01:46 PM

Hi Jouni,

thanks for your message. I enabled the command preview on the ADSM and could see that nothing else is removed aprt from the interface. I had same issue with the CLI.

I openned a SR and TAC found this bug :

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCty45900

Removing an interface will affect the NAT configuration where "any" keyword is used.

I guess i will upgrade.

Thanks !

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card