- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
10-22-2016 02:49 PM
Hello Experts
I want to change the zone name. There are 100 security policies associated with that zone. How I can do it quickly, like is there any replace pattern command available (like in Juniper) to replace th zone name any where in configuration?
Regards,
GR
10-24-2016 08:12 AM
no python from me 😛
text search and replace would work as long as you dont have any other part of the text file using same text string
10-22-2016 04:49 PM
I believe if you just change the zone name under network -> zone, that will automatic update security rules which has that zone applied.
10-24-2016 03:14 AM
Hello
No it is not doing that
10-24-2016 03:43 AM
Hi,
Are you doing this directly on a firewall or changing a Panorama Template ?
-Kim.
10-24-2016 04:36 AM
Hello Kiwi
If I do on the firewall directly then next time I push the config from Panorama then it will be deleted. I have to do on Panorama. Is there any way I can manually edit the replace old zone name to new zone name in the config and reload it on Panorama or any other better way to do that?
10-24-2016 05:19 AM
you can use this script to do it : https://live.paloaltonetworks.com/t5/API-Articles/rules-edit-php-to-manage-edit-export-rules-from-CL...
10-24-2016 08:01 AM
Thanks. I will lookinto this. Do you have script in python? Also Can I do like export file from Panorama and then search and replace the old name of zone with new name and import again into Panorama?
10-24-2016 08:12 AM
no python from me 😛
text search and replace would work as long as you dont have any other part of the text file using same text string
10-24-2016 01:18 PM
Thank you ! Just one last thing, From Panorama what file I need to export, modify and then import
07-28-2022 01:02 PM - edited 07-28-2022 01:09 PM
Years after you asked but I thought it was worth mentioning. Presently there is a rename command that looks like it may do the trick:
rename template TEMPLATE-NAME config vsys vsys1 zone OLD-NAME to NEW-NAME
I'm going to do this on about 400 zones tonight, wish me luck.
09-09-2024 07:04 AM
Have you finished the renaming successfully? I see no "rename" command in panorama cli.
I've just found the following https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CleMCAS :
Attempting to update the zone name in the policy being pushed from Panorama will result in the inability to push that configuration to the device because the zone name is invalid.
Note: Between steps 4 and 5 of this procedure, traffic will not flow through the firewall so it is highly recommended to perform this procedure during off-peak hours.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!