Configuring non-web application objects

Create application objects to control the types of applications that can communicate across your network.

About this task

Navigating in the Local Management Interface: Use one of the following paths to navigate to the policy or page where you want to create a custom URL list object:

  • Secure > Network Access Policy
  • Secure > Outbound SSL Inspection Policy
Navigating in the SiteProtector™ System:
  1. Select the Policy view.
  2. In the My Sites pane, expand the Locally Configured Agents menu item, and then select your Network Security agent.
  3. In the Local Policies pane, select Network Access, and then click Action > Open.

Procedure

  1. In the Network Objects pane, perform one of the following actions:
    • Click New > Application > Non-web Application.
    • Select an existing non-web application object, and then click Edit.
  2. Type a Name for the network object.
  3. Type a Comment to identify the object for later use.
  4. To filter the applications list, begin typing an application name in the Filter box. The list displays only applications that contain the text you type. To view the entire list of applications, click Clear Filter
  5. Click the Restrictions tab, and then select a Protocol to limit the object to include only traffic that uses the specified transport protocol:
    • If you select TCP or UDP protocol, complete the following fields:
      • Source Ports: Select to limit the object to include only traffic that originates from specific ports.
      • Destination Ports: Select to limit the object to include only traffic that is targeted to specific ports.
        Note: In the source and destination ports fields, you can enter single port numbers, a comma-separated list of ports, port ranges, or a combination of comma-separated port numbers and port ranges.
        Examples:
        • 1024
        • 80,443,3000
        • 1024-2048
        • 80,443,1024-2048,3000
    • If you select ICMP protocol, select options in the following fields, and then click Add:
      • Type: Select to limit the object to include only traffic with a specified ICMP type.
      • Code: Select to limit the object to include only traffic with a specified ICMP code.
      Note: You can remove type-code pairs by clicking Remove.
  6. Click Save Configuration.
Parent topic: Non-web application objects
Related concepts:
Object groups
Non-web application objects
Related tasks:
Configuring network access policy rules