TCP base services for clients

In the past you could not mix service object groups like ICMP, TCP, UDP. More recent versions of the ASA (8.0) allow mixed groups. For backward compatibility we have tempates for both. And the oldstyle config is a little bit smaller and more common in literature.

object-group service sBaseTcp tcp
 description -- TCP-baseservices for clients
 port-object eq domain
 port-object eq www
 port-object eq https
 port-object eq imap4
 port-object eq pop3
 port-object eq smtp
 port-object eq ssh
 port-object eq 17
 port-object eq 587
 port-object range 1600 1601
 port-object eq nntp
 port-object eq 8080
 port-object eq 8081
 port-object eq 3128
 port-object eq 8070
 port-object eq citrix-ica
 port-object eq ident
object-group service sBaseUdp udp
 description -- UDP-baseservices for clients
 port-object eq domain
 port-object eq ntp
 port-object eq isakmp
 port-object eq 427

object-group service sBase
 description -- baseservices for clients
 service-object tcp eq domain
 service-object tcp eq www
 service-object tcp eq https
 service-object tcp eq imap4
 service-object tcp eq pop3
 service-object tcp eq smtp
 service-object tcp eq ssh
 service-object tcp eq 17
 service-object tcp eq 587
 service-object tcp range 1600 1601
 service-object tcp nntp
 service-object tcp eq 8080
 service-object tcp eq 8081
 service-object tcp eq 3128
 service-object tcp eq 8070
 service-object tcp eq citrix-ica
 service-object tcp eq ident
 service-object udp eq domain
 service-object udp eq ntp
 service-object udp eq isakmp
 service-object udp eq 427