Error "Invalid port range 0-0" restricting the creation of a New WAAS Container Rule in Prisma Cloud
4780
Created On 06/24/22 04:39 AM - Last Modified 06/24/22 04:51 AM
Symptom
- Error "Invalid port range 0-0" is not allowing the creation of a New WAAS Container Rule in Prisma Cloud.
- The HAR (HTTP Archive Format) file when retrieved from the browser during time of issue indicates that minport and maxport are being passed as 0 (invalid values).
Environment
- Prisma Cloud
Cause
- Those are invalid values (default is 30000) while not exposed to the Console.
- 0 being passed as the minport and maxport values of the default policy implies either the values were set through an API request or in the db.
- If a manual API request was not sent to update the WAAS policy, then this implies that the policy was deleted in the db itself.
Resolution
- This can be fixed with the following API request sent to the container WAAS policy endpoint to set the port values manually:
curl <console_saas_endpoint>/api/v1/policies/firewall/app/container -H 'Content-Type: application/json' -H 'Authorization: Bearer <ACCESS_TOKEN>' -X PUT -d '{"_id": "containerAppFirewall", "maxPort": 31000, "minPort": 30000}'
- This API call will reset the WAAS policy to its default state and allow the creation of new WAAS rules.
Additional Information
Refer the following documentation on how to send API calls to the Prisma Cloud Console in the SAAS environment