Filter
Top Products
CHAPTER
20-1
Cisco ASA 5500 Series Configuration Guide using ASDM
20
Configuring Objects
Objects are reusable components for use in your configuration. They can be defined and used in ASA
configurations in the place of inline IP addresses. Objects make it easy to maintain your configurations
because you can modify an object in one place and have it be reflected in all other places that are
referencing it. Without objects you would have to modify the parameters for every feature when
required, instead of just once. For example, if a network object defines an IP address and subnet mask,
and you want to change the address, you only need to change it in the object definition, not in every
feature that refers to that IP address.
This chapter describes how to configure objects, and it includes the following sections:
• Configuring Network Objects and Groups, page 20-1
• Configuring Service Objects and Service Groups, page 20-5
• Configuring Regular Expressions, page 20-10
• Configuring Time Ranges, page 20-15
Note For other objects, see the following sections:
• Class Maps—See Chapter 46, “Getting Started with Application Layer Protocol Inspection.”
• Inspect Maps—See Chapter 46, “Getting Started with Application Layer Protocol Inspection.”
• TCP Maps—See the “Configuring Connection Settings” section on page 57-5.
Configuring Network Objects and Groups
This section describes how to use network objects and groups, and it includes the following topics:
• Network Object Overview, page 20-2
• Configuring a Network Object, page 20-2
• Configuring a Network Object Group, page 20-3
• Using Network Objects and Groups in a Rule, page 20-4
• Viewing the Usage of a Network Object or Group, page 20-4