Add New Members for Policy Definitions in Policy Manager
You can add an IPv4 or IPv6 host IP address, network IP address or host IP address range, host name (one time DNS lookup), custom address, or you can add an FQDN (includes wildcard domains) to your policy definitions. For more information on how to use FQDN in policies, see About Policies by Domain Name (FQDN).
A custom address can include any combination of the elements below. The Firebox will only match this address if each specified condition is met.
- Any authentication user or group configured on the Firebox
- A host IPv4 address, a host IPv4 subnet, or a host IPv4 range
- Any physical or logical interface configured on the Firebox
To add hosts, addresses, aliases, FQDN, or tunnels to the Available Members list:
- Click Add Other.
The Add Member dialog box appears.
- From the Choose Type drop-down list, select the host range, host IP address, FQDN, custom address, or network IP address to add.
- In the Value text box, type the correct network address, range, FQDN, or IP address.
- Click OK.
The member or address appears in the Selected Members and Addresses list.
To add a user or group to the Available Members list:
- Click Add User.
The Add Authorized Users or Groups dialog box appears.
- Select the type of user or group, select the authentication server, and whether you want to add a user or group.
- Click Select.
If the user or group you want to add does not appear in the list, it is not yet defined as an authorized user or group. To define a new authorized user or group, see Use Authorized Users and Groups in Policies.