Remove firewall configuration for decommisioned server

anujsainjoo · ‎11-14-2014

For example Demora12 is a server that has been decommissioned. I need to remove all the configurations related to this server on my ASA firewalls. I have ASA5550 and ASA 5520. How can I do that? can anybody tell me a process?

Thank you in advance.

Murali · ‎11-15-2014

Hi anujsainjoo ,

Get the ip address of the server and search your config "show run | i <ip address>" that is the starting point from there on you can explore further configs for that server.

HTH

Murali

anujsainjoo · ‎11-26-2014

When I run that command, it comes like

network-object host 10.23.4.100

Can you tell me how can I remove this configuration?

Please check the file so you can know what I am talking about.

Thanks.

mahesh18 · ‎11-26-2014

Hi,

You need to remove host from object network group.

See example below

i created object-group network called test

ciscoasa(config)# object-group network test

ciscoasa(config-network)# network-object host 2.2.2.2

ciscoasa(config)# object-group network test

ciscoasa(config-network)# no network-object host 2.2.2.2

Regards

Mahesh