Error:
An unexpected error occurred. Please click Reload to try again.
Error:
An unexpected error occurred. Please click Reload to try again.
Error "Invalid port range 0-0" restricting the creation of a New WAAS Container Rule in Prisma Cloud

Error "Invalid port range 0-0" restricting the creation of a New WAAS Container Rule in Prisma Cloud

4778
Created On 06/24/22 04:39 AM - Last Modified 06/24/22 04:51 AM


Symptom


  • Error "Invalid port range 0-0" is not allowing the creation of a New WAAS Container Rule in Prisma Cloud.
test 14 June.JPG
 
  • The HAR (HTTP Archive Format) file when retrieved from the browser during time of issue indicates that minport and maxport are being passed as 0 (invalid values).

Screen Shot 2022-06-15 at 12.12.19 PM.png
 


Environment


  • Prisma Cloud


Cause


  • Those are invalid values (default is 30000) while not exposed to the Console.
  • 0 being passed as the minport and maxport values of the default policy implies either the values were set through an API request or in the db.
  • If a manual API request was not sent to update the WAAS policy, then this implies that the policy was deleted in the db itself.


Resolution


  • This can be fixed with the following API request sent to the container WAAS policy endpoint to set the port values manually:
curl <console_saas_endpoint>/api/v1/policies/firewall/app/container   -H 'Content-Type: application/json' -H 'Authorization: Bearer <ACCESS_TOKEN>' -X PUT -d '{"_id": "containerAppFirewall",
"maxPort": 31000,
"minPort": 30000}'
  • This API call will reset the WAAS policy to its default state and allow the creation of new WAAS rules.


Additional Information


Refer the following documentation on how to send API calls to the Prisma Cloud Console in the SAAS environment

Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000CqAhCAK&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language