An alias is a shortcut that identifies a group of hosts, networks, or interfaces. When you use an alias, it is easy to create a security policy because the XTM device allows you to use aliases when you create policies.
Default aliases in Fireware XTM Web UI include:
- Any — Any source or destination aliases that correspond to XTM device interfaces, such as Trusted or External.
- Firebox — An alias for all XTM device interfaces.
- Any-Trusted — An alias for all XTM device interfaces configured as Trusted interfaces, and any network you can get access to through these interfaces.
- Any-External — An alias for all XTM device interfaces configured as External, and any network you can get access to through these interfaces.
- Any-Optional — Aliases for all XTM device interfaces configured as Optional, and any network you can get access to through these interfaces.
- Any-BOVPN — An alias for any BOVPN (IPSec) tunnel.
When you use the BOVPN Policy wizard to create a policy to allow traffic through a BOVPN tunnel, the wizard automatically creates .in and .out aliases for the incoming and outgoing tunnels.
- WG-Wireless-Access-Point1 — An alias for wireless Access point 1 on a wireless XTM device.
- WG-Wireless-Access-Point2 — An alias for wireless Access point 2 on a wireless XTM device.
- WG-Wireless-Access-Point3 — An alias for wireless Access point 3 on a wireless XTM device.
- WG-Wireless-Guest — An alias for wireless Access point 3 on a wireless XTM device that is used for a guest wireless network (Fireware XTM v11.8.x and lower).
Alias names are different from user or group names used in user authentication. With user authentication, you can monitor a connection with a name and not as an IP address. The person authenticates with a user name and a password to get access to Internet protocols.
For more information about user authentication, see About User Authentication.
You can also create and apply aliases when you use Centralized Management for your XTM device and apply a Device Configuration Template to a device. If you apply a template to an XTM device that runs Fireware XTM OS v11.7 or later, and the template includes an alias name that is already used by an interface on the device, because you cannot have duplicate alias names in any configuration file, the alias name does not appear correctly in the Aliases list after the template is applied.
You can add these objects to an alias:
- Host IP address
- Network IP address
- A range of host IP addresses
- DNS name for a host
- Tunnel address — Defined by a user or group, address, and name of the tunnel
- Custom address — Defined by a user or group, address, and XTM device interface
- Another alias
- An authorized user or group
Create an Alias