Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6465
Views
5
Helpful
8
Replies

Need Command to view the object-group of an IP address

Go to solution
JeyaMohanMurugesan
Level 1
Level 1

‎07-25-2015 02:15 PM - edited ‎03-11-2019 11:20 PM

Hi Friends,

 

Help me with the below question.

 

1.   Is there any show commands in ASA to find the object-group of an IP address.

2.  Or Suggest some possible ways to find an object-group of an IP address.

Because if try                   "" sh run | in 172.27.12.17 ""

the output is like        "" network-object host 172.27.12.17"" But how to view the Object-Group

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Karsten Iwen
VIP
VIP

‎07-25-2015 02:24 PM

In ASDM that's quite easy, on the cli I would use the following command:

sh run object-group | i object-group|172.27.12.17

It will show you all object-groups, but only the ones you are looking for has an extra line with the host in question.

View solution in original post

Go to solution
Karsten Iwen
VIP
VIP
In response to JeyaMohanMurugesan

‎07-25-2015 02:52 PM

> Is there a way to filter the exact object-groups for which the ip belongs to...?

I'm not aware of any way to do that. But also on a long list, the needed lines are easily to spot ...

> One more question too.... What is the exact use of nesting ( object-groups )

Imagine you have 10 departments that need specific access. For that all these departments have an own object-group. Now you want to allow five of these departments an additional access, so you put these into another object-group. Now you have a nested object-group.

> And command to view and " Object Network "

???

> If possible,

> Whatsapp me

First: It's not the idea of a community to take things off the forum.

Second: We are talking security, aren't we? So Threema (or Signal) would be a much better choice then WhatsApp ... ;-)

View solution in original post

0 Helpful
8 Replies 8

Go to solution
Karsten Iwen
VIP
VIP

‎07-25-2015 02:24 PM

In ASDM that's quite easy, on the cli I would use the following command:

sh run object-group | i object-group|172.27.12.17

It will show you all object-groups, but only the ones you are looking for has an extra line with the host in question.

Go to solution
JeyaMohanMurugesan
Level 1
Level 1
In response to Karsten Iwen

‎07-25-2015 02:30 PM

HI Iwen,

Thank you. But can you clear me a little more on this. If i enter the above mentioned command it is showing so many object-groups.

Is there a way to filter the exact object-groups for which the ip belongs to...?

 

If possible,

Whatsapp me... my number is +91-9597820859 - I am  Jegan@JeyaMohan

0 Helpful

Go to solution
JeyaMohanMurugesan
Level 1
Level 1
In response to JeyaMohanMurugesan

‎07-25-2015 02:33 PM

 

One more question too.... What is the exact use of nesting ( object-groups )

And command to view and " Object Network "

0 Helpful

Go to solution
JeyaMohanMurugesan
Level 1
Level 1
In response to JeyaMohanMurugesan

‎07-31-2015 02:19 PM

Hi,

I want to remove all the vlan information...

So i have done the below steps.

1. erase cat4000_flash:vlan.dat

MUMPR4ABR1#erase cat4000_flash:

Erasing the cat4000_flash filesystem will remove all files! Continue? [confirm]
[OK]
Erase of cat4000_flash: complete

2. MUMPR4ABR1#sh cat4000_flash:
# type length date/time name
-+----+------+---------+--------
1 bin       0 <no date> vlan.dat

524280 bytes available (0 bytes used)

3. Reload...

 

After reload , i checked the vlan information. But it is still showing the old vlan information.....

 

Kindly give me some solution.

0 Helpful

Go to solution
Karsten Iwen
VIP
VIP
In response to JeyaMohanMurugesan

‎07-25-2015 02:52 PM

> Is there a way to filter the exact object-groups for which the ip belongs to...?

I'm not aware of any way to do that. But also on a long list, the needed lines are easily to spot ...

> One more question too.... What is the exact use of nesting ( object-groups )

Imagine you have 10 departments that need specific access. For that all these departments have an own object-group. Now you want to allow five of these departments an additional access, so you put these into another object-group. Now you have a nested object-group.

> And command to view and " Object Network "

???

> If possible,

> Whatsapp me

First: It's not the idea of a community to take things off the forum.

Second: We are talking security, aren't we? So Threema (or Signal) would be a much better choice then WhatsApp ... ;-)

0 Helpful

Go to solution
JeyaMohanMurugesan
Level 1
Level 1
In response to Karsten Iwen

‎07-25-2015 03:37 PM

Hi Iwen,

I feel sorry for that... But thank you.... If i have any doubts i get back to you....

0 Helpful

Go to solution
Karsten Iwen
VIP
VIP
In response to JeyaMohanMurugesan

‎07-25-2015 03:42 PM

No need to feel sorry! Just come back to the forum whenever you need help again.

0 Helpful

Go to solution
Hussein Akeel
Level 1
Level 1
In response to Karsten Iwen

‎07-13-2022 06:09 AM

Thank you very much,

save of the day,

it worked brilliant

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card