Support User Manuals

Cisco Systems ASA 5585-X Network Router User Manual

Open as PDF

of 2086

20-8

Cisco ASA 5500 Series Configuration Guide using ASDM

Chapter 20 Configuring Objects

Configuring Service Objects and Service Groups

• Click the Create new member radio button.

• Select the Service type from the drop-down list.

• Enter the destination port/range.

• Enter the source port/range.

Step 6 Click Add to add the new service.

Step 7 Click OK to save the configuration.

Editing a Service Group

To edit a service group, perform the following steps:

Step 1 Go to the Configuration > Firewall > Objects > Service Object/Group pane.

Step 2 Select the existing service group that you want to edit, and click Edit.

Depending upon the type of a service object you choose edit, the appropriate windows appears:

• Service Object—Edit Service Object window appears.

• Service Group—Edit Service Group appears.

• Protocol Group—Edit Protocol Group window appears.

Step 3 Enter the necessary changes.

Step 4 Click OK to save the configuration.

Note You can also click Delete to delete a service group. When you delete a service group, it is removed from

all service groups where it is used. If a service group is used in an access rule, do not remove it. A service

group used in an access rule cannot be made empty.

The Configuration > Global Objects > Service Groups > Add/Edit Service Group dialog box lets you

assign services to a service group. This dialog box name matches the type of service group you are

adding; for example, if you are adding a TCP service group, the Add/Edit TCP Service Group dialog box

is shown.

Fields

• Group Name—Enter the group name, up to 64 characters in length. The name must be unique for all

object groups. A service group name cannot share a name with a network object group.

• Description—Enter a description of this service group, up to 200 characters in length.

• Existing Service/Service Group—Identifies items that can be added to the service group. Choose

from already defined service groups, or choose from a list of commonly used port, type, or protocol

names.

–

Service Groups—The title of this table depends on the type of service group you are adding. It

includes the defined service groups.

–

Predefined—Lists the predefined ports, types, or protocols.

• Create new member—Lets you create a new service group member.

previous next