Other than how they are applied, is there a difference between the following two sets of ASA configurations? They appear to operate the same to me, but I just want to make sure that I haven't missed some corner case where you have to use one over the other.
Object-group service TEST Service-object tcp eq 2222 Service-object tcp eq 3333 Access-list TEST permit object-group TEST any any AND Object-group service TEST tcp Port-object eq 2222 Port-object eq 3333 Access-list TEST permit tcp any any object-group TEST Terry Little [email protected] Phone: +1 425 468 1057 Mobile: +1 425 894 4109 Cisco Systems, Inc. Network Consulting Engineer World Wide Security Services Practice Cisco.com - http://www.cisco.com This email may contain confidential and privileged material for the sole use of the intended recipient. Any review, use, distribution or disclosure by others is strictly prohibited. If you are not the intended recipient (or authorized to receive for the recipient), please contact the sender by reply email and delete all copies of this message. For corporate legal information go to: http://www.cisco.com/web/about/doing_business/legal/cri/index.html
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
