cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
497
Views
0
Helpful
1
Replies

show access-l in asa v9.1(2) objects-groups not expanding

jestoner7
Level 1
Level 1

I have an asa running 9.1(2) when I show access-l the object-groups don't expand properly.  Is this a feature of 9.1 or has some feature been enabled.

Here's an example:

access-list access-INSIDE-in line 18607 extended permit object-group tcp_udp object-group nim-master-hosts object-group jfs-aix-vlan1596 object-group nim-master-comm (hitcnt=0) 0xfbbfe374


  access-list access-INSIDE-in line 18607 extended permit tcp v4-object-group nim-master-hosts(748) v4-object-group jfs-aix-vlan1596(749) eq ssh (hitcnt =0)
  access-list access-INSIDE-in line 18607 extended permit tcp v4-object-group nim-master-hosts(748) v4-object-group jfs-aix-vlan1596(749) range 3901 3902 (hitcnt=0)
  access-list access-INSIDE-in line 18607 extended permit tcp v4-object-group nim-master-hosts(748) v4-object-group jfs-aix-vlan1596(749) range exec 1023 (hitcnt=0)
  access-list access-INSIDE-in line 18607 extended permit tcp v4-object-group nim-master-hosts(748) v4-object-group jfs-aix-vlan1596(749) range 67 68 (h itcnt=0)

 

1 Reply 1

There were some bugs regarding ACLs with object-groups in 9.1x. They don't match exactly your problem, but still you could update to a more recent version.

Review Cisco Networking for a $25 gift card