Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4197
Views
5
Helpful
4
Replies

Viewing active VPN sessions via ASDM

Go to solution
ziqex
Level 4
Level 4

‎10-01-2020 08:28 AM

Hello,

I noticed that I am unable to filter VPN sessions by username (Filter by AnyConnect Client).

 

filter by anyconnect client displays list off all sessions

I can see e.g. user Adam Orange in the list with user name being Adam Orange,

once I try filter by username and type Adam Orange filter value cannot contain spaces.

I tried searching with the dot between name and last name and the output does not display anything

Filtering by assigned IP address or public ip address is working without issues.

Have anybody experienced something similar?

Thank you

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎10-01-2020 09:48 AM - edited ‎10-01-2020 09:52 AM

Put the name in quotations " " e.g.


DC-2# show vpn-sessiondb anyconnect filter name "joe bloggs"

Session Type: AnyConnect

Username : joe bloggs Index : 6
Assigned IP : 192.168.14.1 Public IP : 192.168.0.200
Protocol : AnyConnect-Parent SSL-Tunnel DTLS-Tunnel
License : AnyConnect Premium
Encryption : AnyConnect-Parent: (1)none SSL-Tunnel: (1)AES-GCM-256 DTLS-Tunnel: (1)AES-GCM-256
Hashing : AnyConnect-Parent: (1)none SSL-Tunnel: (1)SHA384 DTLS-Tunnel: (1)SHA384
Bytes Tx : 15708 Bytes Rx : 28188
Group Policy : GP-1 Tunnel Group : RAVPN
Login Time : 16:41:51 UTC Thu Oct 1 2020
Duration : 0h:00m:11s
Inactivity : 0h:00m:00s
VLAN Mapping : N/A VLAN : none
Audt Sess ID : c0a8650e000060005f7606cf
Security Grp : none

 

However it doesn't appear to work when you use quotation marks in ASDM. The error is "The filter by value cannot contain spaces". So you will need to use CLI.

View solution in original post

4 Replies 4

Go to solution
Rob Ingram
VIP
VIP

‎10-01-2020 08:37 AM

Hi @ziqex 

Are you running the latest version of ASDM supported by the version of ASA code you are running?

If you run the search from the CLI "show vpn-sessiondb anyconnect filter ....." using a similar filter do you get the desired result?

 

HTH

0 Helpful

Go to solution
ziqex
Level 4
Level 4
In response to Rob Ingram

‎10-01-2020 08:53 AM

It is ASAv, my asdm version is 7.13(1).

With the CLI I am also not getting the result: show vpn-sessiondb anyconnect filter name Adam Orange

 

It is the same for any other username, when I run show vpn-sessiondb anyconnect I can see the username there.

I think it is sth to do with the space as below:

# show vpn-sessiondb anyconnect filter name Adam d?
ERROR: % Unrecognized command

 

Thank you.

Regards,

Daniel

 

 

0 Helpful

Go to solution
Rob Ingram
VIP
VIP

‎10-01-2020 09:48 AM - edited ‎10-01-2020 09:52 AM

Put the name in quotations " " e.g.


DC-2# show vpn-sessiondb anyconnect filter name "joe bloggs"

Session Type: AnyConnect

Username : joe bloggs Index : 6
Assigned IP : 192.168.14.1 Public IP : 192.168.0.200
Protocol : AnyConnect-Parent SSL-Tunnel DTLS-Tunnel
License : AnyConnect Premium
Encryption : AnyConnect-Parent: (1)none SSL-Tunnel: (1)AES-GCM-256 DTLS-Tunnel: (1)AES-GCM-256
Hashing : AnyConnect-Parent: (1)none SSL-Tunnel: (1)SHA384 DTLS-Tunnel: (1)SHA384
Bytes Tx : 15708 Bytes Rx : 28188
Group Policy : GP-1 Tunnel Group : RAVPN
Login Time : 16:41:51 UTC Thu Oct 1 2020
Duration : 0h:00m:11s
Inactivity : 0h:00m:00s
VLAN Mapping : N/A VLAN : none
Audt Sess ID : c0a8650e000060005f7606cf
Security Grp : none

 

However it doesn't appear to work when you use quotation marks in ASDM. The error is "The filter by value cannot contain spaces". So you will need to use CLI.

Go to solution
ziqex
Level 4
Level 4
In response to Rob Ingram

‎10-01-2020 10:03 AM

I'm happy with using CLI. Commands and filtering working fine on CLI. Thank you for your help. 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card