Manage Network Objects and Groups

In Cisco Secure Access, you can add a reusable Network Object and configure the resource with a single IPv4 address, CIDR block (IPv4 or IPv6 addresses), range of IPv4 addresses, wildcard mask, or fully-qualified domain name (FQDN). A Network Object Group is a collection of Network Objects and other Network Object Groups.

Table of Contents

Get Started with Network Objects

To get started, add Network Objects in Secure Access. After you add a Network Object, you can view, edit, duplicate, or delete the resource.

You can select the Network Objects as source or destination components on internet and private access rules in the Access policy. For more information, see Components for Internet Access Rules and Components for Private Access Rules.

About Network Objects

  • A Network Object is defined by the type of the network resource and domain name or IP address information. A Network Object is either a FQDN, Host, Range, or Network.
    • FQDN—A fully-qualified domain name, for example: cisco.com.
    • Host—An IPv4 address, for example: 10.10.10.10.
    • Range—A range of IPv4 addresses, for example: 192.168.0.0 - 192.168.0.10.
    • Network—An IPv4 or IPv6 CIDR block or wildcard mask.
      • IPv4 CIDR block—IPv4 addresses, for example: 192.168.1.0/24.
      • Wildcard mask—An IPv4 address with a wildcard mask, for example: 192.168.10.0/0.0.0.255.
      • IPv6 address—An IPv6 address, for example: fd00:b0fc:8844:3345:186a:6fd7:bab:5f72/24.
  • A Network Object must have a unique name for all Network Objects in the organization.

Add a Network Object

Import a CSV File with Network Objects

Manage a Network Object

Get Started with Network Object Groups

To get started, add Network Object Groups in Secure Access. After you add a Network Object Group, you can view, edit, duplicate, or delete the group in Secure Access.

You can select the Network Object Groups and Network Objects in the groups as destination components on the internet and private access rules in the Access policy.

You can also select the Network Object Groups and Network Objects in the groups as source components on private access rules.

For more information, see Components for Internet Access Rules and Components for Private Access Rules.

Add Network Object Groups

Manage a Network Object Group

View Network Objects and Groups


Combine Destinations with Boolean Logic < Manage Network Objects and Groups > Add a Network Object