Network Objects
Access Zones are made up of network objects. You define network objects by specifying one or more:
-
Host
-
IP address range
-
Network
-
Site
Create network objects for areas that programs must have access to, or areas that programs must be prevented from accessing.
Define objects for each policy or define objects before you create a policy. After defining an object, the object can be reused in other policies.
The same Network Objects and Services are used throughout the SmartEndpoint
A Check Point GUI application which connects to the Endpoint Security Management Server, to manage your Endpoint Security environment - to deploy, monitor and configure Endpoint Security clients and policies. and in SmartConsole Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on.. When you create a new object, it is also available in SmartConsole. If you change an object in the SmartEndpoint or SmartConsole, it is changed everywhere that the object is used.
|
|
Note - The Trusted Zone and the Internet Zone can also be used as objects in a Firewall policy. These objects are resolved dynamically by the client based on Access Zones policy assignment to the client. |
Configuring a Host as a Network Object
Enter data that defines the network object:
|
Object Information |
Description |
|---|---|
|
Name |
A name for the network object. The name must start with a letter and can include capital and small letters, numbers and '_'. All other characters are prohibited. |
|
IP Address |
The IP address of the host you want to use as a network object. |
|
Color |
Select a color to be used for the icon for this network object. |
|
Comment |
A description of the network object. |
Configuring an Address Range as a Network Object
Enter data that defines the network object:
|
Object Information |
Description |
|---|---|
|
Name |
A name for the network object. The name must start with a letter and can include capital and small letters, numbers and '_'. All other characters are prohibited. |
|
First IP Address / Last IP Address |
The first and last IP addresses for the network object. |
|
Color |
Select a color to be used for the icon for this network object. |
|
Comment |
A description of the network object. |
Configuring a Network as a Network Object
Enter data that defines the network object:
|
Object Information |
Description |
|---|---|
|
Name |
A name for the network object. The name must start with a letter and can include capital and small letters, numbers and '_'. All other characters are prohibited. |
|
Network Address |
The network address you want to use as a network object. |
|
Net Mask |
The net mask. |
|
Color |
Select a color to be used for the icon for this network object. |
|
Comment |
A description of the network object. |
Configuring a Site as a Network Object
Enter data that defines the network object:
|
Rule Condition |
Description |
|---|---|
|
Name |
A name for the network object. The name must start with a letter and can include capital and small letters, numbers and '_'. All other characters are prohibited. |
|
Host Name |
The full LDAP name of the host of the site you want to use as a network object. For example, hostname.acme.com. |
|
Color |
Select a color to be used for the icon for this network object. |
|
Comment |
Enter a description of the network object. |
Configuring a Group as a Network Object
-
Enter data that defines the network object.
-
Select from the Available Objects column, or create new objects.
Fields:
|
Rule Condition |
Description |
|---|---|
|
Name |
A name for the network object. The name must start with a letter and can include capital and small letters, numbers and '_'. All other characters are prohibited. |
|
Color |
Select a color to be used for the icon for this network object. |
|
Comment |
Enter a description of the network object. |
Configuring a Site Group as a Network Object
-
Enter data that defines the network object:
Rule Condition
Description
Name
A name for the network object. The name must start with a letter and can include capital and small letters, numbers and '_'. All other characters are prohibited.
Color
Select a color to be used for the icon for this network object.
Comment
Enter a description of the network object.
-
Select an object from the Available Objects column, or create a new object of the type:
-
Site
-
Site Group
-