This issue occurs because while configuring FW Rules for ALG services such as FTP/ ORACLE/SUNRPC/DCERPC, multiple ports have been specified. It is not supported to specifiy multiple ports for a single ALG firewall rule.
For example:
rule 1000 at 0 inout protocol tcp from addrset ip-securitygroup-100 to addrset ip-securitygroup-200 port {1521, 1522, 1525} with attribute addrset attr_1000_1_APP_ID accept as oracle;