Cisco Cisco Firepower Management Center 4000

For increased flexibility and web interface ease-of-use, the FireSIGHT System allows you to create 
named objects, which are reusable configurations that associate a name with a value so that when you 
want to use that value, you can use the named object instead.

You can create objects for IP addresses and networks, Security Intelligence feeds and lists, port/protocol 
pairs, VLAN tags, URLs, application filters, file lists, security zones, intrusion policy variable sets, and 
geolocation. You can then use these objects in various places in the system’s web interface, including 
access control policies, intrusion policy variables, intrusion rules, network discovery rules, event 
searches, reports, dashboards, and so on. 

Grouping objects allows you to reference multiple objects with a single configuration. You can group 
network, port, VLAN tag, and URL objects.

In most cases, editing an object used in an access control, network discovery, or intrusion policy requires 
a policy reapply for your changes to take effect. Editing a security zone also requires that you reapply 
the appropriate device configurations.

For more information, see the following sections:

Any