Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Object-group understanding

Referencing the Cisco document "Using and Configuring PIX Object Groups" I'm trying to understand the service configuration. In the document, the object-group "allowed_prots" is tcp and the object-group "high_ports" is tcp-udp but the access-list 103 is configured for tcp. Will this access list allow tcp and udp or just tcp? and if just tcp to correctly build this access list you will need a protocol object-group destinating tcp and udp and change the access list for the new protocol object-group?

TIA

1 REPLY
Silver

Re: Object-group understanding

Guess you are right..

The access list will allow only tcp. You would need to add another access list for udp.

103
Views
0
Helpful
1
Replies