Creating Dynamic Network Objects

Dynamic network objects track the state of hosts and create host groups with common behavior on the fly. The members of the group share a specific characteristic or property that is not static but depends on events happening dynamically in the running system. They can be global (available for all rules) or defined and used within a correlation scenario.

The following example shows how to create a global dynamic network object for test clients in the network.

  1. Navigate to Policy > Network Objects.
  2. Open the Dynamic Network Objects tab.
  3. Click ADD GLOBAL DYNAMIC NETWORK OBJECT to create a new dynamic network object.
  4. Enter General information for the object:

    • Enter a Name, e.g. All Test Clients.
    • Optional: Enter a Note to describe the object.
  5. Under Settings, configure the following:

    • Under Network, select Internal.
    • Specify the Size of the object list (e.g. 100 entries).
    • Set a Timeout greater than 0 after which the entries will be removed automatically
      (e.g. 60s x 60 x 24 x 7 = 604.800s = 1 week).
  6. Optional: If there are hosts you want to include in the list from the beginning or after applying the configuration, enter their IP addresses under Forced Includes. These entries will be handled as any other object of the list. They will be removed by timeout or by a rule with the delete action for dynamic network objects.
    You can also exclude IP/MAC addresses from the list.

  7. Click SAVE to store the new global dynamic network object.

    Settings of global DNO
    Fig. 1: Example dynamic network object for test clients.
  8. Click the APPLY CHANGES button in the header to activate your configuration changes.

Additional References:

For further information on the settings options, see Dynamic Network Objects.

results matching ""

    No results matching ""