sexta-feira, 17 de dezembro de 2021

Home » , » Cisco - ASDM: 'DM_INLINE_NETWORK' is default name of object-group

Cisco - ASDM: 'DM_INLINE_NETWORK' is default name of object-group

Julio  dezembro 17, 2021  ,   No comments

 

Cisco Bug: CSCuu29995 - DOC: ASDM: 'DM_INLINE_NETWORK' is default name of object-group

Last Modified

Jan 22, 2021

Products (1)

  • Cisco Adaptive Security Device Manager

Known Affected Releases

7.4(1)

Description (partial)

Symptom:
In ASDM,  if more than one IP address/subnet  are used in access-list as source or destination for the same source/destination, ASDM creates object-groups grouping the IP addresses/networks with default name 'DM_INLINE_NETWORK'. Likewise, multiple service specifications are grouped.

This is expected and is the default ASDM behaviour and the user cannot modify the grouping, because the ASA CLI supports a single address per ACE. By default, ASDM displays the contents of these automatically-generated objects rather than the object name. You can display the object name instead by unchecking the option 'Auto-expand network and service object groups with specified prefix'  under ASDM Tools Menu-Preferences- 'Rule Tables' tab.

However there is no Cisco Documentation stating this and so customers have a concern that this cannot be explained during security audits. Hence filing this Documentation defect to document this.

Conditions:
Access-rules configured from ASDM.


fonte: 

https://quickview.cloudapps.cisco.com/quickview/bug/CSCuu29995
https://www.cisco.com/c/en/us/td/docs/security/asa/asa92/asdm72/general/asa-general-asdm/intro-asdm-gui.html

0 comentários:

Postar um comentário