Solved

Adding remarks to the PIX

Posted on 2006-07-07
4
927 Views
Last Modified: 2013-11-16
Hi,

Am working with a 525 Pix. Is there any way to add remarks to the config file (besides the ACL's) and it will show up doing a show run command ? Would like to add remarks to some of the nat lines.

Thank you
0
Comment
Question by:mdelaine
  • 2
  • 2
4 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 17062708
That depends.. what version PIX OS?
6.x gives you much more flexibility to add remarks in many places throughout the config using the PDM GUI
0
 

Author Comment

by:mdelaine
ID: 17066989
Am using version 6.3. Remarks can only be done thru GUI ?  Not CLI ?
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 250 total points
ID: 17067523
Yes, you can use CLI:
  access-list <acl> remark <text whatever>

It appears that acls are about the only place after all where you can add remarks.

You can always save the config as a text file and edit the text to add comments for record and reference.
You can even use this "edited" file as a backup config as long as you put a "!" or "#" in front of each line of inserted text so that the pix will ignore it, but it still won't show up in the "show config"

In addition to the acl remarks, PIX 7.0 adds text Descriptions for interfaces, service groups, names, and some NAT rules
i.e.
 name <ip address> <NAME> description <text string>
interface Ethernet0
 nameif outside
 description <text string>
 object-group service <tag> tcp
  description <text>

 
0
 

Author Comment

by:mdelaine
ID: 17070549
Thank you. I had done a little research on this, but had no success.
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When I upgraded my ASA 8.2 to 8.3, I realized that my nonat statement was failing!   The log showed the following error:     %ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows It was caused by the config upgrade, because t…
Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question