Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
429
Views
0
Helpful
2
Replies

flush object-group members

Rasmus Kiilerich
Level 1
Level 1

‎05-20-2017 06:58 AM - edited ‎03-12-2019 02:23 AM

Hi Forum

In my ASA firewalls I have a object-group per AWS service/Region and i´m trying to make a simple script to update some object-groups.

It will make my script a lot simpler if I can clear/flush a Object-group for member with a single command without removing the object-group itself.

Does anyone know of a single command to flush/clear only the network-object in a given object-group?

e.g.

In the "object-group network AWS-ROUTE53-GLOBAL" i like to clear all "network-object" but retain the "object-group network AWS-ROUTE53-GLOBAL"

object-group network AWS-ROUTE53-GLOBAL
 network-object 52.95.110.0 255.255.255.0
 network-object 205.251.192.0 255.255.248.0

Labels:
0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-20-2017 07:32 AM

Unfortuanately I believe you have to remove the group members one at a time if you wish to keep the object-group.

Of course if you do "no object-group xxxx" followed by "object-group xxx" that would work but only if the group was not referenced elsewhere in the configuration.

0 Helpful

Rasmus Kiilerich
Level 1
Level 1
In response to Marvin Rhoads

‎05-20-2017 07:35 AM

Yes and thats my "problem". I will have to remove all ref. in any ACL i´m using the object-groups in and reinsert the in the right place again.

Bummer

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card