I'm creating service groups, and I realized that I can have TCP, UDP, or TCP-UDP. You can only nest the same groups. (TCP can nest TCP, UDP in UDP, so on). The only way that you can mix tcp and udp port numbers is by creating the tcp-udp service group.
My question is that you can only define the ports and not the protocol that's using it. It would seem that if I put port 80 in a tcp-udp service group, that means I've opened www and udp 80.
Is this the case? Is there any other way around this? I do have groups that will require tcp and udp ports open. My only other alternative is to create the ports and then create separate ACLs to reference individual tcp and udp ports.