Service objects are used to specify protocols and ports. Predefined Service Objects can be used, or new objects can be created. Service objects can be used in various places throughout your configuration such as NAT statements, Firewall Rules and VPNs.
Navigate to Configuration in the upper left, then Firewall in the lower left. Expand Objects and select Service Objects/Group.
Select “Add” from the Service Objects/Groups window in the middle of the screen, and choose “Service Object”.
Configure the object based on the network criteria. Enter a name, select the appropriate service type, and enter the destination port/range and the source port/range. Note that the source port/range is left blank (default) in most cases.
Service objects can be grouped together by adding a Service Object Group and then adding the appropriate service objects to the group. From the Service Objects/Groups screen, select Add, then Service Group.
Similar to the Network Object Group, the Service Group will allow bulk configuration of NAT rules and other implementations on the ASAv.