12-17
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter1 2 Introduction to Firewall Services
Managing Your Rules Tables
If you create a new network/host object named network10.100 for all networks in the 10.100.0.0/16
range, you can search and replace all subordinate network specifications. For example, you can
search for ^10.100* to find all addresses like 10.100.10.0/24. Select the Find Whole Words Only
and Allow Wildcard options, and enter network10.100 as the replacement string. Because you
selected Find Whole Words Only, the string that is replaced is the entire 10.100.10.0/24 string, not
just the 10.100 portion.
If you want to find all rules that use IP addresses (instead of network/host objects), you can search
for *.*.*.* to find all host or network IP addresses. You can then selectively edit the cell while the
Find and Replace dialog box is open.
If you want to replace all interface role objects that include “side” in the name (such as inside and
outside) with the interface role object named External, search for *side with the Find Whole Words
Only and Allow Wildcard options selected, and enter External in the Replace field.
Related Topics
Editing Rules, page 12-9
Find and Replace Dialog Box
Use the Find and Replace dialog box to locate and optionally replace items in rule table cells. The types
of items you can search for differ based on the policy you are viewing.
Navigation Path
Click the Find and Replace (binoculars icon) button at the bottom of any policy that uses rules tables.
In the Firewall folder, this includes AAA rules, access rules, IPv6 access rules, inspection rules, zone
based firewall rules, and web filter rules (for ASA/PIX/FWSM devices only). For ASA/PIX/FWSM
devices, it also includes the NAT translation rules policy (but not for every combination of context and
operational mode) and the IOS, QoS, and connection rules platform service policy.
Related Topics
Finding and Replacing Items in Rules Tables, page12-16
Editing Rules, page 12-9