ASA 5505 - Access Rule issue

matumero84 · ‎06-16-2011

I am trying to add an access rule to my list, but am receiving the following error. Can anyone shed some light on this?

access-list inside_access_in line 1 extended permit udp 0.0.0.0 0.0.0.0 range 15^000 15200 host 192.168.5.216 range 15000 15200

% Invalid input detected at '^' marker.

rmeans · ‎06-16-2011

Interesting.

i cut/paste your acl (changing the name to test) and didn't have any trouble. My ASA is running OS 8.2.4. I did a quick search (access-list and range) of the bug toolkit and didn't find anything.

access-list test line 1 extended permit udp 0.0.0.0 0.0.0.0 range 15000 15200 host 192.168.5.216 range 15000 15200

show access-l test

access-list test; 1 elements; name hash: 0xcb4257a3

access-list test line 1 extended permit udp any range 15000 15200 host 192.168.5.216 range 15000 15200 (hitcnt=0)

If you change the 0.0.0.0 to any do you still get the error?

Pablo · ‎06-16-2011

Hi Marco,

I tried this on my ASA but had no problems at all,

ASA(config)# show run access-list

access-list inside_access_in extended permit udp any range 15000 15200 host 192.168.5.216 range 15000 15200

There's gotta be a character limitation on your SSH terminal client; as rmeans indicated try with any instead of the 0.0.0.0 blocks.

__ __

Pablo

matumero84 · ‎06-16-2011

I'm using CLI on ASDM 5.2. I'm receiving lots of strange errors. Including some of the commands from the drop down box. I tried show running-config and I get an error as well.

Result of the command: "show running-config"

show running-config

^

ERROR: % Invalid input detected at '^' marker.

Could there be an issue with the unit?

This command works

Result of the command: "show version"

Cisco Adaptive Security Appliance Software Version 7.2(3)

Device Manager Version 5.2(3)