Description
Summary of Topic
This article will explain how to manually change the interface security levels for your Cisco PIX or ASA from AO's CMDB
We already know that this interface information can be pulled with a discovery to the device using SSH or Telnet.
Information on how to perform the configuration with discovery is available in the AccelOps user documentation.
Steps to Configure
Assuming that you are logged into AO's UI interface and On the CMDB Page please perform the following:
- Find your Cisco ASA or PIX device
- Select the device in the CMDB and Click on the "Interfaces" tab on the 2nd half of the CMDB screen
- There will be an Edit button on the middle-right hand portion of the page after, Select "Edit"
- Click on the "interfaces" tab on the next pop up page, this page will replace the cmdb page you were previously looking at
- Head over to the security level of each interface and manually configure it
This will affect the way AO will report the inside and outside interfaces. Please be careful when you are configuring this.
NOTE: The higher of the two interface security levels when compared during the SYSLOG event parsing will become the inside interface. The Lower of the two interface security levels will become the outside interface.
Additional Information
This configuration may be overwritten and also not necessary if you decide to use SSH/Telnet to discover the PIX or ASA.
