How do I Debug the config - add break points

John Peterson · ‎11-06-2011

Hi,

Is it possible to debug a ASA config?

For example, when you write a program in Java you can debug (add break points) at each command to see where the config is incorrect, is there such a way to do this on a ASA?

darren.g · ‎11-06-2011

John Peterson wrote:

Hi,

Is it possible to debug a ASA config?

For example, when you write a program in Java you can debug (add break points) at each command to see where the config is incorrect, is there such a way to do this on a ASA?

Not that I know of.

However, when you're entering a config via the CLI, the system will tell you if you use incorrect syntax, or have a glaringly obvious error.

It's enough to work through probably 70% of config issues.

Someone might know an off-line configuration parser, but I've never seen one.

Cheers

John Peterson · ‎11-06-2011

Ok, thanks.

Would you know in which order the command are excuteded .i.e. ACL,NAT,VPN etc...

zulqurnain · ‎11-07-2011

Hi,

Depends on the direction of traffic

If inside to outside then acl and then nat

Keeping above with VPN tunnel then inside acl , nat and then VPN acl

HTH

Sent from Cisco Technical Support iPad App

John Peterson · ‎11-07-2011

Is there anything else which is between "inside to outside then acl and then nat" ?

Does the VPN commands get excuteded just before the packet goes out the outside interface?

Thanks