"DM_INLINE_" Network,services and groups not being referenced in policies when importing from ASA

Showing results for 
Show  only  | Search instead for 
Did you mean: 
Please sign in to see details of an important advisory in our Customer Advisories area.

"DM_INLINE_" Network,services and groups not being referenced in policies when importing from ASA



Im currently migrating a specific context of an ASA with version 9.6.


The migrated rules reference the actual objects or any other network/service object group which name does not begin with "DM_INLINE".


Is this as intended? im left with a lot of unused object groups named DM_INLINE that should probably get deleted if they are not referenced.


Im using version 1.2.84 of expedition.




L4 Transporter

Hi @gabriel_hernandez 

Thank you for contacting us.

This is how it was designed.

When you use the UI to manage CISCO ASA policies, it automatically creates DM_INLINE objects. However, on the UI, the administrator sees the objects instead of the created group. Therefore, Expedition expands these groups and replaces them with their members.

You can safely delete the DM_INLINE groups, along with any other objects that are identified as not being used in your ASA configuration.

I hope this information is helpful. If you have any further questions, please let us know.

Best regards, David

  • 1 replies
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!