Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Unable to create service groups for ACL ASA 8.2.2 & ASDM 6.3.1

Hi,

I want to create ACL and group UDP and TCP protocol using Service Groups Features but when I create the group using ASDM, I have an error like this :

[OK] object-group service TEST
      object-group service TEST
[ERROR] service-object tcp destination eq aol

service-object tcp destination eq aol
                    ^
ERROR: % Invalid input detected at '^' marker.

so the group has been created but is empty.

regards,

1 REPLY

Re: Unable to create service groups for ACL ASA 8.2.2 & ASDM 6.3

Yann,

You need to create a group object service for both tcp and udp, then you assign port objects to the group with the specific port number

the group will look for either tcp or udp on the specified port numbers:-

object-group service <> tcp-udp
description <>
port-object eq 5190 (aol)

Do this via the cli.

HTH>

Andrew.

580
Views
0
Helpful
1
Replies
CreatePlease to create content