Session browser shows "rule Node can be at most 32 characters" error

Session browser shows "rule Node can be at most 32 characters" error

14216
Created On 07/24/19 20:17 PM - Last Modified 10/26/19 03:52 AM


Symptom


When using Monitor > Session browser to filter a security policy of more than 32 characters, error message "rule Node can be at most 32 characters" is displayed

 

Environment


  • PAN-OS versions 8.1 and above
  • Palo Alto Firewall.

Cause


The security policy name has a character limit of 63 whereas the session browser limit is set to 32. This mismatch causes the above error message to be displayed.

Resolution


Reduce the character length of security policy to less than 32.

Additional Information


To replicate the issue:
  1. Create a security policy with the name having more than 32 characters. Example - "this is a test security policy for lab replication for tac and"
  2. Under Monitor > Session Browser, apply the filter to match the policy name - (rule eq 'this is a test security policy for lab replication for tac and')
  • Error message is displayed as below
show -> session -> all -> filter -> rule Node can be at most 32 characters, but current length: 62 value: this is a test security policy for lab replication for tac and... show -> session -> all -> filter -> rule is invalid
  • Upcoming versions of the code will have the fix for this issue. Till then use the above solution as workaround.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PMS5CAO&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail