An Address Object consists of a list of IP address or address ranges, enabling IP addresses to be managed and referred to as a group.

For example, an Address Object can be used to specify the ranges of AWS Route 53 DNS resolvers. If AWS changes their definitions later, editing this object will cause all affected policies to be updated to use the latest definitions.

The object structure also supports the concept of an Address Object Group, enabling one or more Address Objects to be grouped together for convenience in policy definition.

Creating an Address Object or Object Group

To create an Address Object, navigate to Access Policy Management > Address Objects, and click "Create Address Object".

Give your Address Object a name which is easy to remember.  You may also use the Description field to provide more context about what this Address Object is intended to represent.

The list of addresses may contain any number of the following, separated by commas:

• IP addresses

• IP address ranges, specified by a start and end address (e.g. 192.168.1.1-192.168.1.12)

• IP subnets, specified in CIDR notation (e.g. 192.168.1.0/24)

Click Save.  You may now use this Address Object or Object Group in an Access Policy or a Chamber Policy.