cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

936
Views
5
Helpful
4
Replies
ziqex
Beginner

Viewing active VPN sessions via ASDM

Hello,

I noticed that I am unable to filter VPN sessions by username (Filter by AnyConnect Client).

 

filter by anyconnect client displays list off all sessions

I can see e.g. user Adam Orange in the list with user name being Adam Orange,

once I try filter by username and type Adam Orange filter value cannot contain spaces.

I tried searching with the dot between name and last name and the output does not display anything

Filtering by assigned IP address or public ip address is working without issues.

Have anybody experienced something similar?

Thank you

1 ACCEPTED SOLUTION

Accepted Solutions
Rob Ingram
VIP Mentor

Put the name in quotations " " e.g.


DC-2# show vpn-sessiondb anyconnect filter name "joe bloggs"

Session Type: AnyConnect

Username : joe bloggs Index : 6
Assigned IP : 192.168.14.1 Public IP : 192.168.0.200
Protocol : AnyConnect-Parent SSL-Tunnel DTLS-Tunnel
License : AnyConnect Premium
Encryption : AnyConnect-Parent: (1)none SSL-Tunnel: (1)AES-GCM-256 DTLS-Tunnel: (1)AES-GCM-256
Hashing : AnyConnect-Parent: (1)none SSL-Tunnel: (1)SHA384 DTLS-Tunnel: (1)SHA384
Bytes Tx : 15708 Bytes Rx : 28188
Group Policy : GP-1 Tunnel Group : RAVPN
Login Time : 16:41:51 UTC Thu Oct 1 2020
Duration : 0h:00m:11s
Inactivity : 0h:00m:00s
VLAN Mapping : N/A VLAN : none
Audt Sess ID : c0a8650e000060005f7606cf
Security Grp : none

 

However it doesn't appear to work when you use quotation marks in ASDM. The error is "The filter by value cannot contain spaces". So you will need to use CLI.

View solution in original post

4 REPLIES 4
Rob Ingram
VIP Mentor

Hi @ziqex 

Are you running the latest version of ASDM supported by the version of ASA code you are running?

If you run the search from the CLI "show vpn-sessiondb anyconnect filter ....." using a similar filter do you get the desired result?

 

HTH

It is ASAv, my asdm version is 7.13(1).

With the CLI I am also not getting the result: show vpn-sessiondb anyconnect filter name Adam Orange

 

It is the same for any other username, when I run show vpn-sessiondb anyconnect I can see the username there.

I think it is sth to do with the space as below:

# show vpn-sessiondb anyconnect filter name Adam d?
ERROR: % Unrecognized command

 

Thank you.

Regards,

Daniel

 

 

Rob Ingram
VIP Mentor

Put the name in quotations " " e.g.


DC-2# show vpn-sessiondb anyconnect filter name "joe bloggs"

Session Type: AnyConnect

Username : joe bloggs Index : 6
Assigned IP : 192.168.14.1 Public IP : 192.168.0.200
Protocol : AnyConnect-Parent SSL-Tunnel DTLS-Tunnel
License : AnyConnect Premium
Encryption : AnyConnect-Parent: (1)none SSL-Tunnel: (1)AES-GCM-256 DTLS-Tunnel: (1)AES-GCM-256
Hashing : AnyConnect-Parent: (1)none SSL-Tunnel: (1)SHA384 DTLS-Tunnel: (1)SHA384
Bytes Tx : 15708 Bytes Rx : 28188
Group Policy : GP-1 Tunnel Group : RAVPN
Login Time : 16:41:51 UTC Thu Oct 1 2020
Duration : 0h:00m:11s
Inactivity : 0h:00m:00s
VLAN Mapping : N/A VLAN : none
Audt Sess ID : c0a8650e000060005f7606cf
Security Grp : none

 

However it doesn't appear to work when you use quotation marks in ASDM. The error is "The filter by value cannot contain spaces". So you will need to use CLI.

View solution in original post

I'm happy with using CLI. Commands and filtering working fine on CLI. Thank you for your help. 

Content for Community-Ad