Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
11-03-2016 03:19 PM
I have a large list of IP addresses that I need to search on. I am not necessarily interested in if these systems are getting traffic, but moreso interested if they are present in any policies.
Is there a way to search for multiple host/net objects in the Policies tab in one search, or does this need to be done serially?
Thanks!
-jgh
11-07-2016 02:57 AM
if you know the object names you can chain searches with the 'or' function, but this will only work for exact/partial matches
(source/member eq '192.168.0.91') or (source/member contains '10.0.')
11-03-2016 03:42 PM
Hi jgh,
I don't believe that there is a way to search for this directly in the GUI. However, one way to achieve this is to go to CLI and do the following:
> set cli config-output-format set (default format is xml)
> configure
# show rulebase
This will print out all the security rules in text. You can then copy the text and search in it using "grep" commands on a linux machine. Or you can even use notepade++, it has a plugin that provides this feature, name is "search+".
Hope this helps,
Haytham
11-07-2016 02:57 AM
if you know the object names you can chain searches with the 'or' function, but this will only work for exact/partial matches
(source/member eq '192.168.0.91') or (source/member contains '10.0.')
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
