Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
198
Views
0
Helpful
1
Replies

The use of Service Groups and Network Groups

matthew.bauer
Level 1
Level 1

‎01-29-2004 07:34 AM - edited ‎03-09-2019 06:15 AM

Hey all,

How much additional overhead, if any, is there to using Network and Service Groups. I have a Pix 515e with os 6.3.3, I have a set of ACL's a mile long which could be reduced by using the different types of groups. Has anyone had any bad experience with them

Thanks

Matt

Labels:
0 Helpful
1 Reply 1

jmia
Level 7
Level 7

‎01-29-2004 07:53 AM

Hi,

It's a very good idea to use Object groups if you have a very long list of ACLs on you config, another solution is to use TurboACL. I have not had any problems with Object group configurations on the PIX.

For Object Group:

http://www.cisco.com/warp/public/707/pix_obj_grp.html

And also check this document out for a good explanation on Object Grouping on PIX

http://www.giac.org/practical/GSEC/Bill_Donaldson_GSEC.pdf

Hope this helps out and please rate this post if does help you.

0 Helpful
Customers Also Viewed These Support Documents