Create or Edit a Firepower Network Object or Network Groups
A Firepower network object can contain a hostname, an IP address, or a subnet address expressed in CIDR notation. Network groups are conglomerates of network objects and network groups that are used in access rules, network policies, and NAT rules. You can create, read, update, and delete network objects and network groups using Cisco Defense Orchestrator (CDO).
Firepower network objects and groups can be used by ASA, threat defense, FDM-managed, and Meraki devices. See Reusing Network Objects Across Products.
Note | If cloud-delivered Firewall Management Center is deployed on your tenant: When you create a network object or group on the Objects > FTD Network Objects or Objects > FDM Objects or Objects > ASA Objects page, a copy of the object is automatically added to the Objects > Other FTD Objects page and vice-versa. |
Caution | If cloud-delivered Firewall Management Center is deployed on your tenant: Changes you make to network objects and groups on the Objects > FTD Network Objects or Objects > FDM Objects or Objects > ASA Objects page are reflected in the corresponding cloud-delivered Firewall Management Center network object or group on the Objects > Other FTD Objects page. Deleting a network object or group from either page deletes the object or group from both pages. |
|
Device type |
IPv4 / IPv6 |
Single Address |
Range of addresses |
Partially Qualified Domain Name (PQDN) |
Subnet using CIDR Notation |
|---|---|---|---|---|---|
| Firepower | IPv4 / IPv6 | Yes | Yes | Yes | Yes |