Commit Error: "import -> network -> interface 'ethernet1/4' is not a valid reference"

• Importing configuration into the Firewall
• During commit or validation, error message  "Import > network > interface 'ethernet1/4' is not a valid reference" is displayed

Validation Error:
import -> network -> interface 'ethernet1/4' is not a valid reference
import -> network -> interface is invalid

• Palo Alto Firewalls
• Supported PAN-OS
• Commit process

• The imported xml configuration is importing the interface without having any associated layer type, zone or virtual router for that interface
• Example below: In this example, the interface causing the error is ethernet1/4
• From the xml configuration the entries for ethernet is added, but no other settings are added to the interface  ethernet 1/4.

           <interface>
              <member>ethernet1/1</member>
              <member>ethernet1/3</member>
              <member>ethernet1/6</member>
              <member>ethernet1/4</member> <<<<< Added in error

• During the commit when the firewall sees the above entries, it  expects to see additional settings for these interfaces which would include: virtual router, interface layer type and IP and zone which are not configured thus displaying the error message.

1. Use "set" commands to complete configuration for the interface followed by a commit. Example below

> configure
# set network interface ethernet ethernet1/4 layer3 ip 10.10.10.10/24
# set zone L3-Trust network layer3 ethernet1/4
# set network virtual-router default interface [ ethernet1/1 ethernet1/3 ethernet1/6 ethernet1/4  ]
# commit force
# exit

1. Delete the import of the associated interface.
2. Commit the configuration.

> configure
# delete import network interface ethernet1/4
# commit
# exit

3. Re-add this interface later via WebUI if needed.