Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
3234
Views
0
Helpful
1
Replies

WARNING: OOB Access-list config change detected - Issue with Firemon

Fabio Bustamante
Level 1
Level 1

‎02-08-2019 01:49 PM - edited ‎02-21-2020 08:47 AM

Hi

We use a Firemon management tool that needs to communicate with different ASAs on the company. We have no  problem with most firewalls, but for one of them, Firemon is not able to collect its configuration. Firemon support told us that the tool collects a "show access-list" command from the device, and it's failing because it sees a message on the output that creates a problem. The message is:

 

WARNING: OOB Access-list config change detected. Possible modification from,
 SSH/Telnet sessions or ASDM/CSM. Hence, Access-list XXXXX
 may not be displayed.

 

We have run some tests, exporting a "show access-list" command, and indeed, we can see that message sometimes. But we're sure nobody is modifying the configuration.

 

This is a ASA 5545-X running Version 9.8(2)38. Don't know whether it is a way to disable that, or why we see those messages. I have found some bugs but they're related to lower versions. What can we do to avoid receiving those messages while exporting that "show access-list" command?

 

Thanks!

 

10 people had this problem
0 Helpful
1 Reply 1

Luke Keeny
Level 1
Level 1

‎09-14-2020 07:46 AM

Were you ever able to get this resolved?

Thanks.

0 Helpful
Review Cisco Networking for a $25 gift card
Top