Wireless Access

Reply
Frequent Contributor II
Posts: 110
Registered: ‎01-25-2013

Firewall Policies reordering error

Hey Airheads,

 

I've run into an issue in which I receive the following error whenever attempting to reorder firewall policies, found here: Configuration > Access Control > User Roles

 

firewall rules error Aruba clearpass.jpg

I've never seen this error before, and haven't been able to search and find anything on this. Please let me know if you have any information on said error. Thank you!

Guru Elite
Posts: 8,645
Registered: ‎09-08-2010

Re: Firewall Policies reordering error

After creating the role, click Apply. Then go back into it and add your firewall policies.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
MVP
Posts: 4,301
Registered: ‎07-20-2011

Re: Firewall Policies reordering error

You can't change the order the AppRF / DPI rules are (1 and 2) , so anything you place will be under that and it will be rule 3
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Frequent Contributor II
Posts: 110
Registered: ‎01-25-2013

Re: Firewall Policies reordering error

Hey Tim,

This happens when I editing an existing policy, not when I'm creating a new one. All I'm trying to do is reorganize the policy order.

Thanks,

Ryan Hadley

Sent from my iPhone.
Frequent Contributor II
Posts: 110
Registered: ‎01-25-2013

Re: Firewall Policies reordering error

Hey Victor,

The policies were user created, not system generated.

Thanks,

Ryan Hadley

Sent from my iPhone.
MVP
Posts: 4,301
Registered: ‎07-20-2011

Re: Firewall Policies reordering error

According to the error you are getting is because you are trying to place a rule on top of the AppRF rules

Screen Shot 2015-11-18 at 4.06.42 PM.png

You won't be able to move the "global-sacl" and the "Apprf-<ROLE-NAME>-sacl"

 

For example in this role I can't move the allowall above those other two rules.

So your first rule will have the position #3 for any user-role. 

 

If you are trying to place your rule on any position other than 1 or 2 and is giving you that error then you may need to open an Aruba TAC case.

 

 

Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Frequent Contributor II
Posts: 110
Registered: ‎01-25-2013

Re: Firewall Policies reordering error

Thanks, Victor. This ended up being the right solution. I guess it's a 6.4 thing. I got used to being able to reorder everything around how I wanted it, so I'll mess with this and move some of the stuff from the sacls into other policies.

 

Thanks again.

Search Airheads
Showing results for 
Search instead for 
Did you mean: