?
Solved

ASA 5510 - CSC access-list question

Posted on 2007-10-01
4
Medium Priority
?
1,033 Views
Last Modified: 2008-01-09
After enabling CSC to scan http, ftp, and smtp taffic I noticed the below syntax in my config.  Is this normal?access-list outside_mpc extended permit tcp any any object-group DM_INLINE_TCP_1
access-list global_mpc extended permit tcp any any object-group DM_INLINE_TCP_2
object-group service DM_INLINE_TCP_1 tcp
 port-object eq ftp
 port-object eq www
 port-object eq pop3
 port-object eq smtp
object-group service DM_INLINE_TCP_2 tcp
 port-object eq ftp
 port-object eq www
 port-object eq pop3
 port-object eq smtp
0
Comment
Question by:gopher_49
  • 2
  • 2
4 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 19997270
Since both groups are identical, it looks like you configured it twice? Depending on which group is actually being used (probably #2), you should be able to remove the other group.
0
 

Author Comment

by:gopher_49
ID: 20010455
I'll give it a shot.  I'll backup my config first for it's working so well.  Do these groups have anything to do with my CSC antix module?
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 1500 total points
ID: 20010852
I would assume that one of them does relate to the CSC module. Probably the 2nd one, since Cisco's typical behavior is to number the rules/groups as you change them /redo them in the GUI interface.
0
 

Author Comment

by:gopher_49
ID: 20028169
There are two sections of my CSC module.  One is for scanning smtp and one for scanning http.  At first I had it setup to only scan http and then later enabled the smtp scanning.  Do you think it's safe to get rid of one of them?
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On Feb. 28, Amazon’s Simple Storage Service (S3) went down after an employee issued the wrong command during a debugging exercise. Among those affected were big names like Netflix, Spotify and Expedia.
Powerful tools can do wonders, but only in the right hands.  Nowhere is this more obvious than with the cloud.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question