01-08-2018 04:29 AM - edited 02-21-2020 07:05 AM
Hi,
I am configuring an access rule where i have created a service port tcp/udp 3389 and in addition to that i am adding icmp group port (0, 3 and 8) but i am getting an error message
"service cannot contain services of different types"
any advise?
thanks
MM
Solved! Go to Solution.
01-08-2018 06:17 AM
Hi Mohammed,
You can not use both tcp and icmp service in same access control entry.
You can create seperate objects for tcp and icmp service and can call them in seperate access control entries.
Please let me know if you have any concern.
The only way out is :-
To create a protocol group for TCP, UDP, and ICMP, enter the following commands:
hostname (config)# object-group protocol tcp_udp_icmp
hostname (config-protocol)# protocol-object tcp
hostname (config-protocol)# protocol-object udp
hostname (config-protocol)# protocol-object icmp
and then use this protocol object in ACL.
For detailed info please refer to below link: -
Please mark this post as post as helpful and accept it as solution if it resolves your concern.
BR
shivdube
EX-CISCO TAC Engg
01-08-2018 06:17 AM
Hi Mohammed,
You can not use both tcp and icmp service in same access control entry.
You can create seperate objects for tcp and icmp service and can call them in seperate access control entries.
Please let me know if you have any concern.
The only way out is :-
To create a protocol group for TCP, UDP, and ICMP, enter the following commands:
hostname (config)# object-group protocol tcp_udp_icmp
hostname (config-protocol)# protocol-object tcp
hostname (config-protocol)# protocol-object udp
hostname (config-protocol)# protocol-object icmp
and then use this protocol object in ACL.
For detailed info please refer to below link: -
Please mark this post as post as helpful and accept it as solution if it resolves your concern.
BR
shivdube
EX-CISCO TAC Engg
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide