cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
487
Views
0
Helpful
3
Replies

Configuring object-group

gspencer
Level 1
Level 1

Hi All,

I'm trying to use the object-group command to permit all clients to access a Web Server using https.

Here is what I have is this correct.

object-group network HTTPS_Host

network-object host 10.10.10.20

network-object host 10.10.10.30

network-object host 10.10.10.40

network-object host 10.10.10.50

object-group service HTTPS_Ports tcp

port-object eq https

object-group network ANY_Clients

network-object 0.0.0.0 0.0.0.0

access-list outside_acl permit tcp object-group ANY_Clients object-group HTTPS_Host object-group HTTPS_Ports

3 Replies 3

nkhawaja
Cisco Employee
Cisco Employee

seems ok to me. but why using object-group network ANY_clients, you can use keyword "any"

thanks

I did not get the PIX as yet so I was diong this ahead of time. Some one told me I couldn't. I could not find any docs on CCO with this info.I didn't know it would take the keyword any.

Thanks for your help

totally agree. get rid of object-group HTTPS_Ports if it contains only one port.

http://cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00800d641d.shtml