Create bash script:
#!/bin/bash
wget -q https://talosintelligence.com/documents/ip-blacklist
ipblack=( $(cut -d ';' -f2 ip-blacklist ) )
echo "conf t"
for ip in "${ipblack[@]}"
do
echo "name $ip TALOS_BLACKLIST_$ip"
done
echo "no object-group network TALOS_BLACKLIST"
echo "object-group network TALOS_BLACKLIST"
for ip in "${ipblack[@]}"
do
echo "network-object host $ip"
done
echo "!"
echo "exit"
Run it, copy-paste output to your ASA:
./talos-ipblacklist.sh > talos-blacklist.cfg
ASA(config)# management-access mgmt_interface
ASA(config)# nat (outside,mmgt_interface) source static RAVPN_POOL RAVPN_POOL destination static ASA_MGMT_IP ASA_MGMT_IP no-proxy-arp route-lookup
ASA(config)# ssh RAVPN_POOL management
system support diagnostic-cli
show repository <repository name> | i <repository name>
acs restore <backup name> repository <repository name>
show application status acs
user@host:~$ sudo aptitude install linux-headers-$(uname -r)
configure network ipv4 manual <ip address> <subnet mask> <df gateway> management0
show network
Use CLI and enter: get hardware nic port <name> or diag hardware deviceinfo nic <name>
Start -> RUN -> osk
You’ll get on screen keyboard and now you can press CTRL + ALT + DEL to change your password.