10-01-2020 08:28 AM
Hello,
I noticed that I am unable to filter VPN sessions by username (Filter by AnyConnect Client).
filter by anyconnect client displays list off all sessions
I can see e.g. user Adam Orange in the list with user name being Adam Orange,
once I try filter by username and type Adam Orange filter value cannot contain spaces.
I tried searching with the dot between name and last name and the output does not display anything
Filtering by assigned IP address or public ip address is working without issues.
Have anybody experienced something similar?
Thank you
Solved! Go to Solution.
10-01-2020 09:48 AM - edited 10-01-2020 09:52 AM
Put the name in quotations " " e.g.
DC-2# show vpn-sessiondb anyconnect filter name "joe bloggs"
Session Type: AnyConnect
Username : joe bloggs Index : 6
Assigned IP : 192.168.14.1 Public IP : 192.168.0.200
Protocol : AnyConnect-Parent SSL-Tunnel DTLS-Tunnel
License : AnyConnect Premium
Encryption : AnyConnect-Parent: (1)none SSL-Tunnel: (1)AES-GCM-256 DTLS-Tunnel: (1)AES-GCM-256
Hashing : AnyConnect-Parent: (1)none SSL-Tunnel: (1)SHA384 DTLS-Tunnel: (1)SHA384
Bytes Tx : 15708 Bytes Rx : 28188
Group Policy : GP-1 Tunnel Group : RAVPN
Login Time : 16:41:51 UTC Thu Oct 1 2020
Duration : 0h:00m:11s
Inactivity : 0h:00m:00s
VLAN Mapping : N/A VLAN : none
Audt Sess ID : c0a8650e000060005f7606cf
Security Grp : none
However it doesn't appear to work when you use quotation marks in ASDM. The error is "The filter by value cannot contain spaces". So you will need to use CLI.
10-01-2020 08:37 AM
Hi @ziqex
Are you running the latest version of ASDM supported by the version of ASA code you are running?
If you run the search from the CLI "show vpn-sessiondb anyconnect filter ....." using a similar filter do you get the desired result?
HTH
10-01-2020 08:53 AM
It is ASAv, my asdm version is 7.13(1).
With the CLI I am also not getting the result: show vpn-sessiondb anyconnect filter name Adam Orange
It is the same for any other username, when I run show vpn-sessiondb anyconnect I can see the username there.
I think it is sth to do with the space as below:
# show vpn-sessiondb anyconnect filter name Adam d?
ERROR: % Unrecognized command
Thank you.
Regards,
Daniel
10-01-2020 09:48 AM - edited 10-01-2020 09:52 AM
Put the name in quotations " " e.g.
DC-2# show vpn-sessiondb anyconnect filter name "joe bloggs"
Session Type: AnyConnect
Username : joe bloggs Index : 6
Assigned IP : 192.168.14.1 Public IP : 192.168.0.200
Protocol : AnyConnect-Parent SSL-Tunnel DTLS-Tunnel
License : AnyConnect Premium
Encryption : AnyConnect-Parent: (1)none SSL-Tunnel: (1)AES-GCM-256 DTLS-Tunnel: (1)AES-GCM-256
Hashing : AnyConnect-Parent: (1)none SSL-Tunnel: (1)SHA384 DTLS-Tunnel: (1)SHA384
Bytes Tx : 15708 Bytes Rx : 28188
Group Policy : GP-1 Tunnel Group : RAVPN
Login Time : 16:41:51 UTC Thu Oct 1 2020
Duration : 0h:00m:11s
Inactivity : 0h:00m:00s
VLAN Mapping : N/A VLAN : none
Audt Sess ID : c0a8650e000060005f7606cf
Security Grp : none
However it doesn't appear to work when you use quotation marks in ASDM. The error is "The filter by value cannot contain spaces". So you will need to use CLI.
10-01-2020 10:03 AM
I'm happy with using CLI. Commands and filtering working fine on CLI. Thank you for your help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide