cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

how to remove duplicate entries

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

how to remove duplicate entries

Go to solution
shallugarg
L2 Linker

‎08-28-2020 01:31 PM

how do i remove the duplicate entires before i prepare xml file

0 Likes Likes
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
lychiang
L5 Sessionator
In response to shallugarg

‎09-08-2020 01:53 PM - edited ‎09-08-2020 01:54 PM

When you go to the "objects" tab, and you can click on the right lower corner "red" dot to remove unused objects as shown in the screenshot.  After removing unused objects, you will need to click on the "Green" dot again to re-calculate unused objects so it will reflect the change. 

 

Screen Shot 2020-09-08 at 1.50.36 PM.png

Please aware of the pre-defined service objects like application-default, http, https , those can't be removed due to it's pre-defined service objects in PAN-OS.  

View solution in original post

0 Likes Likes
11 REPLIES 11

Go to solution
lychiang
L5 Sessionator

‎08-28-2020 02:04 PM

Hello @shallugarg ,

For duplicate objects, you can go to Dashboard and click on the red number shown on the duplicate objects and it will take you to see the duplicate objects, example, if it's address objects, you can right-click on the address objects and click on "merge" to merge either based on name and value or value.  

Go to solution
shallugarg
L2 Linker
In response to lychiang

‎08-28-2020 02:44 PM

Hi,

 

Thanks for your quick reply.

 

i see 56 duplicate objects for address and that has been taken care of.

 

I see under services section that there are 6 duplicate entries for services.

 

domain tcp 53

domain udp 53

nfs tcp 2049

nfs udp 2049

sunrpc tcp 111

sunrpc udp 111

 

0 Likes Likes

Go to solution
lychiang
L5 Sessionator
In response to shallugarg

‎08-28-2020 02:50 PM

It will be the sam process, to review them and merge them if possible. 

0 Likes Likes

Go to solution
shallugarg
L2 Linker
In response to lychiang

‎08-28-2020 02:54 PM

is it possible to merge tcp and udp together. I tired merge by name and value and it does not do.

0 Likes Likes

Go to solution
shallugarg
L2 Linker
In response to lychiang

‎08-28-2020 02:56 PM

Capture.PNG

0 Likes Likes

Go to solution
lychiang
L5 Sessionator
In response to shallugarg

‎08-28-2020 03:02 PM

Hi in your example , you might not want to merge tcp 53 and udp 53 to one single service object , you should rename the object name, for example, domain_tcp , domain_udp , that way you can keep both service objects since they do have different value, 

0 Likes Likes

Go to solution
shallugarg
L2 Linker
In response to lychiang

‎08-28-2020 03:43 PM

Thanks. At last i was able to figure out how to replace that 🙂

 

Last piece is that i checked the invalid section again from dashboard and observed i have few in invalid zones. 

P.S. i am trying to convert config from ASA to Palo Alto.

 

Do, i need to fix this as well

0 Likes Likes

Go to solution
shallugarg
L2 Linker
In response to lychiang

‎08-28-2020 03:45 PM

Capture.PNG

0 Likes Likes

Go to solution
lychiang
L5 Sessionator
In response to shallugarg

‎08-28-2020 03:48 PM - edited ‎08-28-2020 03:54 PM

Yes, if it shows invalid object, you need to fix it before you are able to import it to PAN-OS device, for example: if it's ICMP service object, you will need to replace the service object with ICMP application, please refer below video for replacing invalid service object with the application. 

 

https://www.youtube.com/watch?v=TISACJIPJT8&list=PLD6FJ8WNiIqVez8EBeoyRsnQcKTA5FuZ-&index=6&t=0s

 

For an invalid zone, you can go to "Monitor" -> "Migration log" to see what's the reason it sees the zone as invalid. 

0 Likes Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2022 - Palo Alto Networks