08-04-2020 09:10 AM
When trying to send an rather large API call (atomic) to Panorama I receive this error message <Fail: Invalid target object in edit handler>
What I found out so far:
Please see this picture for the size of the API call payload which causes problems:
Should the picture not work:
Lower equal 101162 bytes > works
Between 101163 and 101210 bytes > Does not work but no error message is shown. Chrome console throws 500 error
Above 101211 bytes > Expedition error message shown
I'm not sure if the problem is caused by expedition or by Panorama itself. I wasn't able to recreate the same API call expedition is doing with linux.
I've edited large security rulesets in the past and it worked, not sure since when this is broken.
Thanks for your help
10-27-2020 05:08 AM - edited 10-27-2020 05:10 AM
I had a chat with Palo Alto and Expedition about this through our support case. Turns out it was not related to Panorama PanOS 9.x.
The expedition tool is using the POST to send the big amount of data, and in that case the limit should be 5MB, which is far from the limit you were seeing.
It seems to have been an issue in the PHP code handling a very large body.
Update to Expedition (126.96.36.199) fixed all our issues using the built in API Output Manager.
10-27-2020 05:50 AM
I can confirm that the API call for the security rules now works as expected.
But 188.8.131.52 introduced a different issue for me, I will create a new post for that issue.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!