Device Security
Manage Network Segments
Table of Contents
Manage Network Segments
Manage network segments in Device Security to properly learn devices and attributes
that use overlapping IP addresses.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
One of the following subscriptions:
|
In some instances, you may need to update or delete network segments for
Device Security to properly learn about
devices with overlapping IP addresses.
For example, if you redeploy firewalls or add firewalls to a new site, update your
network segments to ensure that the traffic maps to the correct devices.
Whenever you change the firewalls assigned to a network segment, or change the
network segment's site assignment, reset the network segment. If you don't reset the
network segment, device attributes and behaviors learned from new traffic may be
associated with different devices previously learned through the network segment.
When you no longer need a network segment, delete the network segment to ensure that
attributes and behaviors get associated with the correct devices.
When you reset or delete a network segment, all devices and attributes learned
through the network segment assignment are deleted from the assets inventory.
Devices and attributes must be relearned from traffic through the updated
network segments.
Strata Cloud Manager
Manage network segments in Device Security in Strata Cloud Manager to properly learn
devices and attributes that use overlapping IP addresses.
Follow these procedures to manage network segments:
Update the Assigned Firewalls
Update the Assigned Firewalls
- Navigate to .Click on the name of the network segment that you want to update to bring up the Edit Network Segment dialog box.In the Firewall field, add or remove firewalls.You can search by a firewall's serial number and name, or use the drop-down selector. The drop-down selector shows if firewalls are assigned to a network segment or not, including the network segment you're editing. If you select a firewall that is assigned to a different network segment, it's removed from its existing network segment after saving the configuration. There must be at least one firewall assigned to the network segment.
![]()
Select Edit to save your changes and close the dialog box.Select the check box next to the updated network segment and Reset the network segment.Optional If you moved a firewall from one network segment to another, select the network segment that the firewall was removed from and Reset that network segment.Update the Site Assignment from Network Segments
Update the Site Assignment from Network Segments- Navigate to .Click on the name of the network segment that you want to update to bring up the Edit Network Segment dialog box.In the Assigned to Site (optional) field, select or create the new site that you want to assign the network segment to.Select or creating a new site replaces the existing site assignment in the Assigned to Site (optional) field. A network segment can only be assigned to one site.
![]()
Select Edit to save your changes and close the dialog box.Select the check box next to the updated network segment and Reset the network segment.Update the Site Assignment from Sites
Update the Site Assignment from Sites- Navigate to .Edit the site.
- In the Sites table, find the site that the network segment belongs to.Click the three vertical dots at the far right of the row and select Edit Site to bring up the Edit Site dialog box.In the Network Segment (Optional) field, add or remove network segments assigned to the site.If you remove a network segment from the site, the network segment is reassigned to the default site after saving the configuration.If you add a network segment, it is removed from its existing site after saving the configuration.
![]()
Save the site configuration.Navigate to .Select the check boxes next to the network segments that were removed from a site or added to a new site and Reset the network segments.Delete or Reset Network Segments
Delete or Reset Network Segments- Navigate to .Select the check box next to the network segments that you want to delete or reset.You need to select at least one network segment to see the Delete and Reset options.
![]()
Delete or Reset the network segments.
Device Security
Manage network segments in Device Security to properly learn devices and attributes that use overlapping IP addresses.Follow these procedures to manage network segments:Update the Assigned Firewalls
Update the Assigned Firewalls- Navigate to .Click on the name of the network segment that you want to update to bring up the Edit Network Segment dialog box.In the Firewall field, add or remove firewalls.You can search by a firewall's serial number and name, or use the drop-down selector. The drop-down selector shows if firewalls are assigned to a network segment or not, including the network segment you're editing. If you select a firewall that is assigned to a different network segment, it's removed from its existing network segment after saving the configuration. There must be at least one firewall assigned to the network segment.
![]()
Select Edit to save your changes and close the dialog box.Select the check box next to the updated network segment and Reset the network segment.Optional If you moved a firewall from one network segment to another, select the network segment that the firewall was removed from and Reset that network segment.Update the Site Assignment from Network Segments Configuration
Update the Site Assignment from Network Segments Configuration- Navigate to .Click on the name of the network segment that you want to update to bring up the Edit Network Segment dialog box.In the Assigned to Site (optional) field, select or create the new site that you want to assign the network segment to.Select or creating a new site replaces the existing site assignment in the Assigned to Site (optional) field. A network segment can only be assigned to one site.
![]()
Select Edit to save your changes and close the dialog box.Select the check box next to the updated network segment and Reset the network segment.Update the Site Assignment from Sites
Update the Site Assignment from Sites- Navigate to .Edit the site.
- In the Sites table, find the site that the network segment belongs to.Click the three vertical dots at the far right of the row and select Edit Site to bring up the Edit Site dialog box.In the Network Segment (Optional) field, add or remove network segments assigned to the site.If you remove a network segment from the site, the network segment is reassigned to the default site after saving the configuration.If you add a network segment, it is removed from its existing site after saving the configuration.
![]()
Save the site configuration.Navigate to .Select the check boxes next to the network segments that were removed from a site or added to a new site and Reset the network segments.Delete or Reset Network Segments
Delete or Reset Network Segments- Navigate to .Select the check box next to the network segments that you want to delete or reset.You need to select at least one network segment to see the Delete and Reset options.
![]()
Delete or Reset the network segments.
