• SonicOS 7 Profile Objects
• Endpoint Security
• Bandwidth
• Quality of Service (QoS) Marking
  • Classification
  • Marking
  • Conditioning
    • Site to Site VPN over QoS Capable Networks
    • Site to Site VPN over Public Networks
  • 802.1p and DSCP QoS
    • Enabling 802.1p
    • DSCP Marking
      • DSCP Marking and Mixed VPN Traffic
      • Configure for 802.1p CoS 4 – Controlled load
      • QoS Mapping
      • Managing QoS Marking
  • Glossary
• Content Filter
  • Managing CFS Profile Objects
    • About CFS Profile Objects
    • About UUIDs for CFS Profile Objects
    • Configuring CFS Profile Objects
      • Advanced Screen
      • Consent Screen
      • Custom Header Screen
    • Editing a CFS Profile Object
    • Deleting CFS Profile Objects
  • Applying Content Filter Objects
• DHCP Option
  • Configuring DHCP Option Objects
    • RFC-Defined DHCPV4 Option Numbers
    • RFC-Defined DHCPV6 Option Numbers
  • Editing DHCP Option Objects
  • Deleting DHCP Option Objects
• AWS
  • AWS Objects
    • About Address Object Mapping with AWS
    • Viewing Instance Properties in SonicOS
    • Creating a New Address Object Mapping
    • Enable Mapping
    • Configuring Synchronization
    • Configuring Regions to Monitor
    • Verifying AWS Address Objects and Groups
• SonicWall Support
  • About This Document

Verifying AWS Address Objects and Groups

With mappings in place, a Synchronization Interval set, Region specified and, most importantly, Mapping enabled, you can view address objects and address groups representing the matched EC2 Instances and their IP addresses.

For example, on the AWS page itself, the address group and the Mapped address groups are shown in the EC2 Instances table.

Expanding the relevant row reveals the address objects corresponding to an Instance’s public and private IP addresses.

Navigating to the Object > Match Objects > Addresses page in SonicOS and viewing the Address Object screen shows those same host address objects. VPN is used for the zone of private IP addresses and WAN is used for a public address zone.

A naming convention is used for the Instance address group and the address objects for each of the IP addresses, based on the Instance ID and, for the address objects, a suffix depending on whether the address is public or private.

Viewing the Address Groups screen and expanding the rows of interest shows that the original AccountsDeptServers address group now has an address group, representing an EC2 Instance, as a member.

The EC2 Instance address group itself contains the address objects that were created for each of its IP addresses.