Creating normalized interfaces
If you want to use a physical interface name in a per-platform mapping rule in a normalized interface, you must first delete the default per-platform mapping rule from the default per-platform interface. Otherwise the dynamic-interface default mapping has been used error is displayed, and you cannot create the normalized interface.
To delete the default per-platform mapping rule:
-
Go to Policy & Objects > Normalized Interface.
-
In the content pane, right-click the default per-platform normalized interface, and select Edit.
The Edit Normalized Interface page appears.
-
In the Per-Platform Mapping table, right-click the default per-platform mapping rule, and select Delete.
-
Click OK.
To create normalized interfaces for zones:
-
Go to Policy & Objects > Normalized Interface.
-
Click Create New.
The Create New Normalized Interface pane is displayed.
-
Complete the Name, Description, and Color options.
-
Add a per-platform mapping.
-
Click Create New under Per-Platform Mapping.
The Create new Per-Platform Mapping dialog box is displayed.
-
In the Model list, select the model for which you created the zone.
-
In the Device Interface Name box, type the name of the interface.
-
Click OK.
-
-
Add a per-device mapping.
-
Click Create New under Per-Device Mapping.
The Create new Per-Device Mapping dialog box is displayed.
-
In the Mapped Device list, select the model for which you created the zone.
-
In the Device Interface list, select the zone.
-
Click OK.
-
-
Click OK.
To create a wildcard interface:
- Go to Policy & Objects > Normalized Interface.
- Click Create New.
The Create New Normalized Interface pane is displayed.
- Complete the Name, Description, and Color options.
- Set the Wildcard toggle to the ON position, and enter the Wildcard Interface in the text field below.
When using wildcards, a "." (period) represents a single alpha-numeric character, similar to regex = [a-zA-Z0-9].
An "*" (asterisk) represents zero or more characters regex =.*
- Add a Change Note and click OK.
The wildcard interface can be used in Firewall policies similar to a regular interface but will be interpreted as one or more interfaces that matched the defined wildcard pattern.
During install, all matched objects are installed.