We’ve all had those oh-shit moments when changing an ip, duplex or making other changes and losing connection with a device that will end up costing someone a trip on site and possible downtime.

The best way I’ve found is to cover yourself with this command:

“reload in 5”

If everything goes according to plan, cancel the reload and write mem, but if not, you’ve minimized downtime.

CSCtr16184

Ran into this bug in ASA 8.4 where access ASDM through vpn would not work, even through relevant management was correct and I was exempting my inside network from my vpn pool. The fix was adding “route lookup” to the end of the nat exemption.

nat (LAN,TWC) source static obj-10.2.0.0 obj-10.2.0.0 destination static obj-vpn obj-vpn route-lookup