Cisco ASA 5505 Configuration Manual page 312

Asa 5500 series

Hide thumbs Also See for ASA 5505:

Getting started manual (168 pages)

Administrator's manual (118 pages)

Hardware installation manual (82 pages)

Table of Contents

Configuring Network Objects and Groups

To remove an object, double-click the object in the Members in Group pane, or select the object and click

After you add all the member objects, click OK.

You can now use this network object group when you create a rule. For an edited object group, the change

is inherited automatically by any rules using the group.

You cannot delete a network object group that is in use.

Using Network Objects and Groups in a Rule

When you create a rule, you can enter an IP address manually, or you can browse for a network object

or group to use in the rule. To use a network object or group in a rule, perform the following steps:

From the rule dialog box, click the ... browse button next to the source or destination address field.

The Browse Source Address or Browse Destination Address dialog box appears.

You can either add a new network object or group, or choose an existing network object or group by

double-clicking it.

To find an object in the list, enter a name or IP address in the Filter field, and click Filter. The wildcard

characters asterisk (*) and question mark (?) are allowed.

After you add a new object or double-click an existing object, it appears in the Selected

Source/Destination field. For access rules, you can add multiple objects and groups in the field,

separated by commas.

You return to the rule dialog box.

Viewing the Usage of a Network Object or Group

To view which rules use a network object or group, in the Configuration > Firewall > Objects > Network

Objects/Group pane, click the magnifying glass Find icon.

The Usages dialog box appears, listing all the rules currently using the network object or group. This

dialog box also lists any network object groups that contain the object.

Cisco ASA 5500 Series Configuration Guide using ASDM

To add a new address, fill in the values under the Create New Network Object Member area, and

The object or group is added to the right-hand Members in Group pane. This address is also added

to the network object list.

To add a new network object, see the

To add a new network object group, see the

"Configuring a Network Object" section on page

"Configuring a Network Object Group" section on

Configuring Objects

Show Quick Links

Chapters

Table of Contents

Asa 5510 Asa 5540 Asa 5520 Asa 5550 Asa 5580

Cisco ASA 5505 Configuration Manual page 312

Hide quick links:

Chapters

Related Manuals for Cisco ASA 5505

Related Products for Cisco ASA 5505

This manual is also suitable for:

Table of Contents