Managing Network Objects

The Users & Objects > Network Objects page lists the network objects defined in the system. In this page you can add, edit, and delete network objects.

The most common use for network objects is to define a security policy and exceptions to it. These objects can be used as hosts for the internal DNS service and their IP addresses can be configured as fixed for the internal DHCP service.

These are the available network object types:

  • Single IP - Represents a device with a single IP address (host object).

  • IP Range - Represents a range of IP addresses.

  • Network - Represents a network.

  • Domain Name - Represents a Domain.

Important - You can create a maximum of 1000 objects in total. For example, 500 host objects, 300 network objects and 200 Domain Name objects.

To create a Single IP network object:

  1. Click New.

    The New Network Object window opens.

  2. In Type, select Single IP.

  3. Enter an IP address and Object name.

  4. Select or clear these options as necessary:

    • Allow DNS server to resolve this object name - When the gateway is the DNS server for your internal networks, the name of the server/network object is translated to its IP address.

      Exclude from DHCP service - The internal DHCP service does not distribute the configured IP address of this server/network object to anyone.

    • Reserve IP address in DHCP service for MAC - The internal DHCP service distributes the configured IP address only to this server/network object based on its MAC address.

    • Enter the MAC address - This is required for IP reservation. When you create the object from the Active Devices page, the MAC address is detected automatically.

  5. Click Apply.

To create an IP Range network object:

  1. Click New.

    The New Network Object window opens.

  2. In Type, select IP Range.

  3. In the Start IP and End IP fields, enter the IP addresses that represent the start of the IP range and end of the IP range.

  4. Enter the Object name.

  5. Select or clear this option as necessary:

    Exclude from DHCP service - The internal DHCP service does not distribute the configured IP range to anyone.

  6. Click Apply.

Note - Wildcard network objects that represent a series of non-sequential IP addresses are supported.

To create a Network type network object:

  1. Click New.

    The New Network Object window opens.

  2. In Type, select Network.

  3. Enter a Network address and Subnet mask.

  4. Enter the Object name.

  5. Click Apply.

To create a Domain Name type object:

  1. Click New.

    The New Network Object window opens.

  2. In Type, select Domain Name.

  3. Enter the Domain (an FQDN).

  4. Enter the Object name.

  5. Click Apply.

To edit a network object:

  1. Select a network object from the list.

  2. Click Edit.

  3. Make the necessary changes.

  4. Click Apply.

To delete a network object:

  1. Select the network object from the list.

  2. Click Delete.

  3. Click Yes in the confirmation message.

To filter for a specified network object:

  1. In the Type to filter box, enter the name of the network object or part of it.

  2. As you enter text, the list is filtered and shows matching results.

To add a new network object and bypass SSL inspection based on the host MAC address (locally managed only):

  1. Click New.

    The New Network Object window opens.

  2. For Type, select Device.

  3. For Host MAC address, enter a custom value or select from the menu.

  4. Select the checkbox for Bypass host with this MAC by SSL inspection.

  5. Enter the Object name.

  6. Click Apply.

Note - You can also do this on the HomeActive Devices page. Click Save as and select Device type Network Object.