Solved

Cisco PIX 525 error

Posted on 2006-06-26
6
352 Views
Last Modified: 2013-11-16
Hi Guys, i am trying to add a new line into my existing firewall list and i am getting this error

ERROR: missing command argument(s)

I had added a few lines in before and everything is smooth, but now when i try to add this line in again, i am encountering the error.

This is the line i am trying to add in:

access-list OUTSIDE line 38 permit tcp xxx.xxx.xxx.xxx 255.255.255.248 host BAM_Public object-group mgmt_svc

Anyone knows what went wrong?
0
Comment
Question by:usanet21
  • 3
  • 2
6 Comments
 
LVL 5

Expert Comment

by:renill
ID: 16989992
access-list 100 permit object-group protocols object-group
   remotes object-group locals object-group services

try this
access-list 101 permit tcp  xxx.xxx.xxx.xxx 255.255.255.248 host BAM_Public object-group mgmt_svc eq "network_service"

you have to specify the service associated .
network_service can be ftp , telnet ...etc..etc

renill
0
 

Author Comment

by:usanet21
ID: 16990032
in my current access list, there are already some commands with the below without any error, so i do not think adding a eq will solve the prob. Furthermore, below are the ports for the object-group service mgmt_svc.

access-list OUTSIDE line 38 permit tcp xxx.xxx.xxx.xxx 255.255.255.248 host BAM_Public object-group mgmt_svc

object-group service mgmt_svc tcp
  port-object eq ftp-data
  port-object eq ftp
  port-object eq telnet
  port-object eq www
  port-object eq sqlnet
  port-object eq 4001
  port-object eq 5001
  port-object eq 5002
  port-object eq 5003
 
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 50 total points
ID: 16991733
Try it without the "line 38"

access-list OUTSIDE permit tcp xxx.xxx.xxx.xxx 255.255.255.248 host BAM_Public object-group mgmt_svc

Else, use the PDM GUI and insert the acl right where you want it.
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 
LVL 79

Expert Comment

by:lrmoore
ID: 16997682
If that fixed your issue precisely, then why the C grade?
0
 

Author Comment

by:usanet21
ID: 16997692
Thats not the precise fixed. But anyway, it is resolved. Thank you so much. I am not using the PDM by the way, i am typing the ACL one by one.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 16997730
OK, thanks!
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
ASA 5520 problem with Failover in Active/Standby 8 96
Provisioning vcpu for VM (cisco virl) 4 65
ASA 5506X create a simple DMZ 4 26
Cisco RV042G 4 6
When I upgraded my ASA 8.2 to 8.3, I realized that my nonat statement was failing!   The log showed the following error:     %ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows It was caused by the config upgrade, because t…
Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question