由于验证错误而提交失败:安全规则中的“目标 -> 设备无效”

由于验证错误而提交失败:安全规则中的“目标 -> 设备无效”

10586
Created On 06/07/23 05:50 AM - Last Modified 07/27/23 02:22 AM


Symptom


  • 从 Panorama 中删除托管防火墙后,Panorama 上的本地提交失败并出现验证错误。 例如:
Validation Error:
shared -> pre-rulebase -> security -> rules -> Share-security-rule-1 -> target -> devices -> 016401004783 '016401004783' is not a valid reference
shared -> pre-rulebase -> security -> rules -> Share-security-rule-1 -> target -> devices is invalid
目标1.png

Environment


  • 全景

Cause


  • 安全规则配置中仍引用设备。 这在 GUI 上不可见。

Resolution


从 CLI 中删除引用。
脚步:
  1. 查找引用设备序列号的配置。 对于前,
admin@Panorama> set cli config-output-format set
admin@Panorama> configure
Entering configuration mode
[edit]
admin@Panorama# show | match 016401004783
set shared pre-rulebase security rules Share-security-rule-1 target devices 016401004783
[edit]
  1. 删除引用,然后提交:
admin@Lab81-44-Panorama# delete shared pre-rulebase security rules Share-security-rule-1 target devices 016401004783

[edit]
admin@Lab81-44-Panorama# commit

Commit job 2824 is in progress. Use Ctrl+C to return to command prompt
..18%25%39%47%99%...........100%
Configuration committed successfully

[edit]
 
 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000bpxdCAA&lang=zh_CN&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language