Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASDM - object-group network DM_INLINE_NETWORK_1

Recent versions of ASDM create

"object-group network DM_INLINE_NETWORK_1"

statements automagically.

I could not find any documentation about this.

Can anybody explain what the purpose of this approach is?

3 REPLIES
New Member

Re: ASDM - object-group network DM_INLINE_NETWORK_1

if you search your config - you should see that it is a grouping of objects. The system creates them for you if you put more than 1 object on a rule.

For example, if your rule is src1 to dest1&2 port xx

Then you will have an object group network dm_inline_network_1 with dest1&2 in it.

if you do another rule the same way with different destinations - it will make another one for you - dm_inline_network_2 & so on.

Re: ASDM - object-group network DM_INLINE_NETWORK_1

It is meant to simply your configurations.

Regards

Farrukh

New Member

Re: ASDM - object-group network DM_INLINE_NETWORK_1

I like using the ASDM but it would be good if you could disable this feature. From experecne I have found that auditors love vague non descriptive commands in firewalls such as (DM_INLINE_NETWORK) This "feature" has forced me to abandon using the ASDM to configure our firewalls.

Message was edited by: Christopher Smith

6319
Views
0
Helpful
3
Replies