Cisco ASA Series Cli Configuration Manual page 543
Software version 9.0 for the services module
Hide thumbs
Also See for ASA Series:
- Configuration manual (429 pages) ,
- Getting started (31 pages) ,
- Mount and connect (12 pages)
Table of Contents
Advertisement
Chapter 1
Configuring Objects
Command
Step 1
object-group service grp_id {tcp | udp |
tcp-udp}
Example:
hostname(config)# object-group service
services1 tcp-udp
Step 2
Add one or more of the following group members:
port-object {eq port | range begin_port
end_port}
Example:
hostname(config-service)# port-object eq
domain
group-object group_id
Example:
hostname(config-network)# group-object
Engineering_groups
Step 3
description text
Example:
hostname(config-service)# description DNS
Group
Example
To create service groups that include DNS (TCP/UDP), LDAP (TCP), and RADIUS (UDP), enter the
following commands:
hostname (config)# object-group service services1 tcp-udp
hostname (config-service)# description DNS Group
hostname (config-service)# port-object eq domain
hostname (config)# object-group service services2 udp
hostname (config-service)# description RADIUS Group
hostname (config-service)# port-object eq radius
hostname (config-service)# port-object eq radius-acct
hostname (config)# object-group service services3 tcp
hostname (config-service)# description LDAP Group
hostname (config-service)# port-object eq ldap
Purpose
Adds a service group.
The object keyword adds an additional object to the service object
group.
The grp_id is a text string up to 64 characters in length and can be
any combination of letters, digits, and the following characters:
•
underscore "_"
•
dash "-"
•
period "."
Specifies the protocol for the services (ports) you want to add with
either the tcp, udp, or tcp-udp keywords. Enter the tcp-udp
keyword if your service uses both TCP and UDP with the same
port number, for example, DNS (port53).
The prompt changes to service configuration mode.
Defines the ports in the group. Enter the command for each port
or range of ports. For a list of permitted keywords and well-known
port assignments, see the
"Protocols and Applications" section on
page
1-11.
Adds an existing object group under this object group. The nested
group must be of the same type.
(Optional) Adds a description. The description can be up to 200
characters.
Cisco ASA Series CLI Configuration Guide
Configuring Objects
1-9
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
