Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

Commit failed stating "zones and interface is already in use" when push the Panorama template to the local firewall

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Commit failed stating "zones and interface is already in use" when push the Panorama template to the local firewall

L0 Member

We have removed the firewall from the Panorama. Also cleared the DG and template as well.

Then re-add the firewall by importing it to the Panorama.

With "Merge with Device Candidate Config" and "Include Device and Network Template" enabled, partial config pushed to the local firewall. However tried with the "Force Template Value", it fails with the below error.

 

Verified the local firewall, we could see the zones, interface and IPsec shows as override and no changes are accepting from the template.

So manual reverted the override locally however it ends up with the same validation error.

 

Some of the tunnel interfaces also shown in the commit failure logs but rename/wipe may impact the existing connection.

 

Is there a way to resolve this issue apart from renaming/removing the identical objects?

 

Validation Error

Zone --> Branch_to_Corp --> Network --> layer3 'loopback.101' is already in use

Zone --> Branch_to_Corp --> Network --> layer3 'loopback.102' is already in use

Zone --> Branch_to_Corp --> Network --> layer3 is invalid

Zone --> Branch_to_Corp --> Network is invalid

Zone is invalid

Vsys is invalid

Device is invalid

Configuration is invalid

 

Any help is highly appreciated. Thanks in advance!

0 REPLIES 0
  • 414 Views
  • 0 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!