Network Security
PAN-OS & Panorama
Table of Contents
PAN-OS & Panorama
Use tags to identify the purpose of a rule or configuration object and to help you
better organize your rulebase.
- Create and apply tags.To tag a zone, you must create a tag with the same name as the zone. When the zone is attached in security rules, the tag color automatically displays as the background color against the zone name.
- Select .
- On Panorama or a multiple virtual system firewall, select theDevice Groupor theVirtual Systemto make the tag available.
- Adda tag and enter aNameto identify the tag or select a zoneNameto create a tag for a zone. The maximum length is 127 characters.
- (Optional) SelectSharedto create the object in a shared location for access as a shared object in Panorama or for use across all virtual systems in a multiple virtual system firewall.
- (Optional) Assign aColorfrom the 17 predefined colors. By default,ColorisNone.
- ClickOKandCommitto save your changes.
- Apply tags to policy.
- SelectPoliciesand any rulebase under it.
- Adda security rule and use the tagged objects you created in Step 1.
- Verify that the tags are in use.
- Apply tags to an address object, address group, service, or service group.
Modify Tags
- Select to perform any of the following operations with tags:
- Click theNameto edit the properties of a tag.
- Select a tag in the table andDeletethe tag from the firewall.
- Clonea tag to duplicate it with the same properties. A numerical suffix is added to the tag name (for example, FTP-1).
For information on working with tags, see View Rules by Tag Group.