For details on cookie usage on our site, read our Privacy Policy
How to update the policy in a project
- LIVEcommunity
- Tools
- Expedition
- Expedition Discussions
- How to update the policy in a project
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
How to update the policy in a project
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report This Content
10-09-2018 12:18 PM
I used expedition to provide me with information. I manually added rules to the firewall. When I go back to expedition and re-import the device config, it still shows me all of the same old rules. I tried re-importing under devices and from within the project. I also deleted and recreated the project with the same result. How do I refresh the policy?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report This Content
10-10-2018 02:43 AM
Have you gone, outside of a project, to devices -> choose your device -> contents -> "retrieve contents" & save first?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report This Content
10-10-2018 11:45 AM
Yes. It is Panorama managed, so I retrieved contents on Pano, retrieved devices, and then even retrieved contents on those devices (even though it should be almost nothing). I then did the import in the project. Same result.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report This Content
10-10-2018 03:26 PM
Then AFAIK you need to base your project on the Panorama config (and import the panorama configuration), not the firewall configuration. The Panorama pushed policies are not present in the firewalls running-config.xml or candidate config either, so it's logical the expedition tool can't retrieve them either. Vice versa, you will push your changes using API calls to Panorama and from Panorama to the device.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report This Content
10-11-2018 08:02 AM
"you need to base your project on the Panorama config (and import the panorama configuration), not the firewall configuration."
This is what I am doing. I have not had this problem previously.
- Expedition 1.2.48 Hotfix Information in Expedition Release Notes
- Expedition 1.2.44 Hotfix Information in Expedition Release Notes
- Expedition 1.2.42 Hotfix Information in Expedition Release Notes
- Expedition 1.2.33 Hotfix Information in Expedition Release Notes
- Can't import firewall config into Expedition Project in Expedition Discussions
Show your appreciation!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
