How to configure single policy with multiple networks or hosts
JumpinJuniper last edited by
Could anyone enlighten me as to how to configure single policy with multiple networks or hosts? The only way I have been able to do this is to create separate policies on my side for each network and that simply is a PAIN.
crawlord last edited by
set group address “XXX”
set address “VVV” address 192.x.x.x/24
set address “TTT” address 192.y.y.y/24
set address “XXX” address 192.x.x.x/24
set address “XXX” address 192.p.p.p/24
set group address “XXX” add "VVV"
set group address “XXX” add “TTT”
rinse and repeat
then create a bidirectional policy with the group address !!!
techloh last edited by
You can create a new member list and join related member into a related group.
Object -> Address -> List -> Zone -> New
Object -> Address -> Group -> New
Then you can create a policy with Multiple Source/Destination Address already.