Hi All, First off I appologize if this question has been answered before. I have a question regarding the use of application groups and custom service groups in the same security policy. Can traffic identified in the application group use a non standard port that is defined in the custom service group? For example, Can traffic identified as kerberos in an application group use a non-standard port say 555 which is defined in the custom service group of the policy? How would behaviour be different if I use application-default as the service in the policy which has application group? Can traffic identified as kerberos use the port UDP 123 since theres the app-id ntp in the same application group as kerberos? Thanks in advance!
... View more