Using dynamic objects from SMC

By default, the SMC object database contains Firewall_xx and Network_xx objects, which correspond to network interfaces on the managed firewalls, e.g., Firewall_in and Firewall_out.

These dynamic objects do not have defined values, and are not deployed by SMC on firewalls.

Other dynamic objects can be created manually. They have to correspond to a known interface when they are used in a firewall's configuration. In the configuration, their values will be replaced with the value of the local object that bears the same name on each firewall. If the local object does not exist, the deployment of the configuration will fail.

If you wish to rename an interface on a firewall, the corresponding objects Firewall_xx and Network_xx will not be automatically renamed on SMC. You will need to rename them manually to prevent configuration errors. We recommend following the steps below when your firewall's network is managed by SMC:

1. On the firewall in question, directly change the name of the interface,

2. On SMC, force the retrieval of the interface and routing configuration from the menu System > Configuration in the firewall settings,

3. On SMC, create the Firewall_xx and/or Network_xx objects that bear the new interface name.

4. If the previous dynamic objects that bear the former names are used in the configuration of the firewall in question, replace them with the new objects.