Shortcuts

Search Users Guide

Chapter 5. Working with Objects
Prev Next

Chapter 5. Working with Objects

5.1. Types of Objects
5.2. Addressable Objects
5.2.1. Common Properties of Addressable Objects
5.2.2. The Firewall Object
5.2.3. The Cluster Object
5.2.4. Editing Rule Set Objects
5.2.5. Interface Object
5.2.6. IPv4 Address Object
5.2.7. IPv6 Address Object
5.2.8. Attached Network Objects
5.2.9. Physical Address Objects
5.2.10. Host Object
5.2.11. IPv4 Network Object
5.2.12. IPv6 Network Object
5.2.13. Address Range Object
5.2.14. Address Tables Object
5.2.15. Special-Case addresses
5.2.16. DNS Name Objects
5.2.17. Object Groups
5.2.18. Dynamic Object Groups
5.3. Service Objects
5.3.1. IP Service
5.3.2. ICMP and ICMP6 Service Objects
5.3.3. TCP Service
5.3.4. UDP Service
5.3.5. User Service
5.3.6. Custom Service
5.4. Time Interval Objects
5.5. Object Keywords
5.6. Creating and Using a User-Defined Library of Objects
5.7. Finding and Replacing Objects

5.1. Types of Objects

Firewall Builder supports a variety of object types, both simple and complex. Simple object types include Address, Network, Host, and IP, TCP, UDP and ICMP service objects. More complex object types are Firewall, Address Table, DNS Name, and User Service.

There are the following types of objects in Firewall Builder:

  • Addressable objects: Section 5.2 describes objects that have, either directly or indirectly, an address of some kind. This category includes the physical objects (firewalls, hosts, interfaces) as well as some logical objects (networks, address ranges, individual addresses). Addressable objects can be grouped together into Object groups.

  • Service objects: Section 5.3 describes objects that represent services. They include IP, TCP, UDP, and ICMP services, as well as user services. Service objects can be grouped together into Service groups.

  • Time Interval objects: Described in Section 5.4, these represent a discreet or recurring period of time. They can be used as part of a rule in the firewall. For example, you could have a rule that matches on weekends, but not during the week.

  • Rule set objects: Described in Section 5.2.4, these represent the various rule sets in a firewall. By default, a firewall starts with one access policy, one NAT, and one routing rule set, but you can add more of each. Rule set objects only exist as child objects of a firewall.

All objects in Firewall Builder have some characteristics in common.

All objects have a Name field and a Comment field. The Name field can contain white spaces and can be arbitrarily long (though shorter names work better in the GUI). The Comment field can contain any text of any length.

Prev     Next
4.6. Working with Multiple Data Files  Home  5.2. Addressable Objects
 

Copyright © 2000-2012 NetCitadel, Inc. All rights reserved.
 Using free CSS Templates.