Table of Contents
Advertisement
Network and Security Manager Administration Guide
Using Objects Across Domains
Replacing Objects
324
Protected Resources represent the network components, a network service, and the
security device that protects those components and service.
IKE Phase1 Proposals represent the phase1 proposals used to establish a secure and
authenticated communication channel between two VPN members.
IKE Phase2 Proposals represent the Security Associations for services (such as IPSec)
that require key material or parameters, as exchanged by two VPN members.
Objects created in the global domain are available in all subdomains, but objects created
in a subdomain are available only in that subdomain.
For example, when creating a VPN:
You can use a global domain user object in a subdomain VPN.
You can use a subdomain user object in a subdomain VPN.
You cannot create VPNs across domains. However, you can use an extranet device to
represent the device in the other domain to create a cross-domain VPN.
You cannot use a subdomain user object in a global domain VPN.
When creating a subdomain protected resource, you can include a subdomain address
object and a global domain service object, but you can only select the protected resource
when you are logged in to that specific subdomain.
You can use Replace With operations to simplify the process of making repeated changes
to an object that is referenced in multiple security policies.
The following shared objects support Replace With operations:
Address Objects
Service Objects
Zone Objects
Routing Instance Objects
To replace an object with another shared object:
From the navigation tree, select Object Manager.
1.
Right-click on the object that you want to replace and select Replace With from the
2.
menu.
All available objects of the same category from the global domain are displayed,
except the selected object that you are replacing.
Select an object that will replace all instances of the existing object and click Next.
3.
Click Finish.
4.
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Table of Contents
Need help?
Do you have a question about the NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1 and is the answer not in the manual?