Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
851
Views
0
Helpful
1
Replies

Merging multiple ACLs lines in one Rule on My FMC server as we can do in other firewall like Checkpoint and PA

ravindraccie
Level 1
Level 1

‎11-28-2019 11:05 PM

Hi Team,

 

Can we merge multiple ACL line having same destination or port number in FMC as we can do and create one rule out of 10 ACL line in firewall like Checkpoint and PA ?

We recently had migration from Juniper where 15000 rules are creating into 200000 ACL lines.

 

Regards,

Ravindra

Labels:
0 Helpful
1 Reply 1

Seb Rupik
VIP Alumni
VIP Alumni

‎11-28-2019 11:47 PM

Hi there,

It has been a while since I used a PA or checkpoint FW so not sure what constructs they now use, but on the FMC look at grouping common ACLs through the use of objects and object groups:

https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Reusable_Objects.html

 

cheers,

Seb.

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card