Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
390
Views
0
Helpful
1
Replies

Resolving names in ASA's

TGF_Cisco
Level 1
Level 1

‎02-05-2013 02:10 AM - edited ‎03-11-2019 05:56 PM

hi

How to configure ASA 5520 to resolve names in ASA's. We are currently using ASDM to configure network objects with the hostnames in the internet and then specifying the IP address . But this is done manually. Is there a different way of setting it up on ASA.    

Also when getting reports from ASA, we see the IP's but is there a way that we could add an identity to the IP's (reverse lookup)

thanks

Labels:
0 Helpful
1 Reply 1

Jouni Forss
VIP Alumni
VIP Alumni

‎02-05-2013 02:34 AM

Hi,

If you mean that you want the ASA to do DNS lookups then this is how I enabled in my own firewall

dns domain-lookup WAN

dns server-group DefaultDNS

name-server x.x.x.x

name-server y.y.y.y

Where

  • x.x.x.x = Primary ISP DNS server
  • y.y.y.y = Secondary ISP DNS server
  • WAN = My "outside" interface
  • dns domain-lookup = activates the DNS lookup on certain interface

After this I can for example create and "object" which contains a FQDN and it can be then used on the ASA to build rules and ASA will update the IP address of the host at certain interval. Though I havent had much use for this personally.

- Jouni

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card