求助：ASA9.1

rmbwalr

“http_mail”组里的用户可以访问“HTTP_POP”端口组里的端口，现在除了"FIN""IT"策略能上网以外，其他策略的允许访问端口都打不开（如WWW,pop3等）。老ASAVersion 8.2(1)就没问题
access-list inside_access_in extended permit tcp object-group http_mail any object-group HTTP_POP
access-list inside_access_in extended permit tcp object-group rs_mail any object-group POP_SMTP
access-list inside_access_in extended permit tcp object-group r_mail any object-group POP
access-list inside_access_in extended permit ip object-group weifei object-group out_weifei
access-list inside_access_in extended permit object-group HR object-group hr object-group out_hr
access-list inside_access_in extended permit tcp object-group gps object-group out_gps object-group GPS
access-list inside_access_in extended permit ip object-group fin any
access-list inside_access_in extended permit ip object-group it any
access-list inside_access_in extended permit udp object-group dns_http_server any eq domain
access-list inside_access_in extended permit tcp object-group dns_http_server any object-group DNS_HTTP
access-list out extended permit icmp any any
pager lines 24
logging enable
logging asdm informational
mtu management 1500
mtu outside 1500
mtu inside 1500
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-713.bin
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
!            
object network inside-network
nat (inside,outside) dynamic interface
access-group out in interface outside
access-group inside_access_in in interface inside
route outside 0.0.0.0 0.0.0.0 xxx.xxx.xxx.1 1