cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
723
Views
0
Helpful
1
Replies

Unable to create service groups for ACL ASA 8.2.2 & ASDM 6.3.1

yann.boulet
Level 1
Level 1

Hi,

I want to create ACL and group UDP and TCP protocol using Service Groups Features but when I create the group using ASDM, I have an error like this :

[OK] object-group service TEST
      object-group service TEST
[ERROR] service-object tcp destination eq aol

service-object tcp destination eq aol
                    ^
ERROR: % Invalid input detected at '^' marker.

so the group has been created but is empty.

regards,

1 Reply 1

andrew.prince
Level 10
Level 10

Yann,

You need to create a group object service for both tcp and udp, then you assign port objects to the group with the specific port number

the group will look for either tcp or udp on the specified port numbers:-

object-group service <> tcp-udp
description <>
port-object eq 5190 (aol)

Do this via the cli.

HTH>

Andrew.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: