Search and Filter ASA Network Policies and Rules

Use the search bar to search for names, keywords, or phrases in the names of the network policies and in the rules within the policies. Search is not case-sensitive.

Filter

Use the filter sidebar to find network policy issues, shared policies, and policies on specific devices. Filtering is not additive, each filter setting acts independently of the other.

Policy Issues

CDO identifies network policies that contain shadow rules. The number of policies that contain shadow rules is indicated in the Policy Issues filter:

CDO marks shadowed rules and network policies that contain them with the shadow badge on the network policies page. Click Shadowed to view all the policies containing shadow rules. See Shadowed Rules for more information.

Shared Policies

Shared policies are policies that are found on more than one device. Changes that are made to a shared policy impact all devices where that policy is found. In the example below, the inside-acl-in policy is shared by two devices. See Shared ASA Network Policies for more information.

Devices

Filter the network policies list by device by expanding the Device filter, entering the name or IP address in the Search devices field, and then selecting a device found in the result.

Hits

Use this filter to find policies across your devices that have been triggered a number of times over a specified period.