Cisco IP Any Migration

Reply
L4 Transporter

Cisco IP Any Migration

Hi All;  Just double checking if the service set to TCP and UDP would cover the Cisco "IP" on rule conversions.

Abs
L3 Networker

Re: Cisco IP Any Migration

Hi Adam,

By default, the ANY service of the firewall covers all TCP and UDP ports. No need to create a new service for this.

A.

(now shamelessly accepting the next 48 friend requests.)

L6 Presenter

Re: Cisco IP Any Migration

Hi..You will need to use application to match on IP protocol traffic.  For example to match on IP protocol 97 (Ethernet-within-IP Encapsulation), you will choose app=etherip and leave service=any.  Thanks.

Highlighted
L4 Transporter

Re: Cisco IP Any Migration

Thanks, there is an application and the services are ports for TCP/UDP.  I left the application as any though.

Abs
L3 Networker

Re: Cisco IP Any Migration

For other protocols that Cisco uses (such as GRE, and ICMP) you'll need to use Applications. For IP, setting the service to Any is enough.    

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!