Security rules on middle level DGs

Announcements

ATTENTION Customers, All Partners and Employees: The Customer Support Portal (CSP) will be undergoing maintenance and unavailable on Saturday, November 7, 2020, from 11 am to 11 pm PST. Please read our blog for more information.

Reply
Highlighted

Security rules on middle level DGs

I have three templates in a stack and three levels of device groups. I want to create a leveled policies based on security zones. Let's say I have a secuity zone called GlobalProtect.

 

Let's say I have:

DG-Standard

|-------DG-Management

            |-------------DG-ISOC

 

 

I want to create GlobalProtect rules on level 2 of device groups. The problem is that all security groups are visible only if I select the the DG-ISOC device group so I cannot put any policy on DG-Management or DG-Standard level. 

 

Is there a way to make 'common' rules based on security zones?


Accepted Solutions
Highlighted
Cyber Elite

Hi @Miroslaw_Iwanowski

 

What do you mean with "security groups"? Zones, right? If yes, then try to write the zone name in level 2 device group manually. I think this os only a reference check problem in panorama.

View solution in original post


All Replies
Highlighted
Cyber Elite

Hi @Miroslaw_Iwanowski

 

What do you mean with "security groups"? Zones, right? If yes, then try to write the zone name in level 2 device group manually. I think this os only a reference check problem in panorama.

View solution in original post

Highlighted

Ahhh, I haven't though about that! Thank you.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!