Cisco Cisco FirePOWER Appliance 8130
5-2
FireSIGHT System User Guide
Chapter 5 Managing Reusable Objects
Using the Object Manager
Create and manage objects, including application filters, variable sets, and security zones, using the
object manager (
object manager (
Objects > Object Management
). You can group network, port, VLAN tag, and URL objects;
you can also sort, filter, and browse the list of objects and object groups.
For more information, see:
•
•
Grouping Objects
License:
Any
You can group network, port, VLAN tag, and URL objects. The system allows you to use objects and
object groups interchangeably in the web interface. For example, anywhere you would use a port object,
you can also use a port object group. Objects and object groups of the same type cannot have the same
name.
object groups interchangeably in the web interface. For example, anywhere you would use a port object,
you can also use a port object group. Objects and object groups of the same type cannot have the same
name.
When you edit an object group used in a policy (for example, a network object group used in an access
control, network discovery, or intrusion policy), you must reapply the policy for your changes to take
effect.
control, network discovery, or intrusion policy), you must reapply the policy for your changes to take
effect.
Deleting a group does not delete the objects in the group, just their association with each other.
Additionally, you cannot delete a group that is in use. For example, you cannot delete a VLAN tag group
that you are using in a VLAN condition in a saved access control policy.
Additionally, you cannot delete a group that is in use. For example, you cannot delete a VLAN tag group
that you are using in a VLAN condition in a saved access control policy.
To group network, port, VLAN tag, or URL objects:
Access:
Admin/Access Admin/Network Admin
Step 1
Select
Objects > Object Management
.
The Object Management page appears.
Step 2
Under the type of object you want to group, select
Object Groups
.
The page for the type of object you are grouping appears.
Step 3
Click
Add Network Group
,
Add Port Group
,
Add VLAN Tag Group
, or
Add URL Group
.
A pop-up window appears where you can create the group.
Step 4
Type a
Name
for the group. You can use any printable standard ASCII characters except curly braces (
{}
).
Step 5
Select one or more objects and click
Add
.
•
Use Shift and Ctrl to select multiple objects, or right-click and
Select All
.
•
Use the filter field (
) to search for existing objects to include, which updates as you type to
display matching items. Click the reload icon (
) above the search field or click the clear icon (
)
in the search field to clear the search string.
•
Click the add icon (
) to create objects on the fly if no existing objects meet your needs.
Step 6
Click
Save
.
The group is created.