Unable to create service groups for ACL ASA 8.2.2 & ASDM 6.3.1

Unanswered Question
Apr 1st, 2010
User Badges:

Hi,


I want to create ACL and group UDP and TCP protocol using Service Groups Features but when I create the group using ASDM, I have an error like this :


[OK] object-group service TEST
      object-group service TEST
[ERROR] service-object tcp destination eq aol

service-object tcp destination eq aol
                    ^
ERROR: % Invalid input detected at '^' marker.


so the group has been created but is empty.


regards,

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Yann,


You need to create a group object service for both tcp and udp, then you assign port objects to the group with the specific port number

the group will look for either tcp or udp on the specified port numbers:-


object-group service <> tcp-udp
description <>
port-object eq 5190 (aol)


Do this via the cli.


HTH>

Andrew.

Actions

This Discussion