12-14-2012 02:30 PM - edited 03-11-2019 05:37 PM
The following does not help:
ASA# sho run object-g | in 1433
port-object eq 1433
service-object tcp eq 1433
port-object eq 1433
ASA# sho run object-g service | in 1433
port-object eq 1433
service-object tcp eq 1433
ASA# sho run object-g | be 1433
port-object eq 1433
ASA# sho run object-g | grep 1433
port-object eq 1433
service-object tcp eq 1433
port-object eq 1433
12-14-2012 02:38 PM
Hello,
Try this one:
sh run object service in-line | i 1433
Please rate helpful posts
Best Regards,
Eugene
12-14-2012 02:52 PM
ASA# sho run object-g service in-line | in 1433
^
ERROR: % Invalid input detected at '^' marker.
ASA#
12-14-2012 03:15 PM
Hello,
With command which I specified you can find an object which contains a service,
sh run object service in-line | i 1433
To find an object-group which contains 1433, will be easier in ASDM:
I attached a screenshot
12-14-2012 08:40 PM
I issued the command and firewall pointed to an error after the word service, meaning "in-line" is not one of the commands it expects after the word "service"
12-15-2012 12:34 AM
So what is the ASA version? Answer for object-group is ASDM.
Best Regards,
Eugene
02-11-2013 02:20 PM
Here's the command to find the object group name a port is in:
ASAXXX# show run object-group | in object-group | time-exceeded
object-group icmp-type ICMP_SVCS
icmp-object time-exceeded
Now you can find what else is in that object group:
ASAXXX# sho run object-group id ICMP_SVCS
object-group icmp-type ICMP_SVCS
icmp-object echo-reply
icmp-object unreachable
icmp-object echo
icmp-object time-exceeded
icmp-object traceroute
and the access-list that object group is being used in:
ASAXXX# sho access-list | in ICMP_SVCS
access-list Access_List_Name line 5 extended permit icmp object-group ABCD object-group WXYZ object-group ICMP_SVCS
So if you know a port number, you can quickly find out what object group and what access list is allowing that port.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: