This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Joshua_Boerum
Participant
‎2016-07-07 07:54 AM

set-access-rule - API

I was looking at moving a rule from position 1 to 3 with the following:

{

  "uid": "rule-uid-here",

  "layer" : "Network",

  "new-position" : 3,

  "details-level" : "full"

}

Response: 400 Bad Request

{

  "code": "generic_err_invalid_parameter",

  "message": "new-position parameter temporarily unsupported"

}

Is there a way I can simply move rules around without deleting/adding them?

Originally, instead of using "new-position" : 3, I was using "position" : 3, which returns a status 200 OK but was not moving the rule. Should it be returning status 200 OK when using "position"?

0 Kudos
3 Replies
Uri_Bialik
Mod
Mod
‎2016-07-07 08:33 AM

Hi Joshua,

The set-access-rule API does not have a "new-position" or "position" arguments. See https://sc1.checkpoint.com/documents/R80/APIs/index.html#web/set-access-rule

Unfortunately, you cannot re-position a rule using the existing APIs. This is a feature that we'd like to add to one of the upcoming releases.

0 Kudos
Václav_Brožík
Collaborator
‎2022-08-14 09:21 AM
In response to Uri_Bialik

That is weird. In the documentation you have the "new-position" argument since the API v1:

https://sc1.checkpoint.com/documents/latest/APIs/index.html#set-access-rule~v1%20

Is it a mistake in the documentation?

I am currently using this argument with R81.10 (API v1.8).

0 Kudos
Chris_Atkinson
Employee Employee
Employee
‎2022-08-14 06:34 PM
In response to Václav_Brožík

There is definitely no argument named simply "position" in the syntax of "set access-rule" API.

Testing a quick example via MGMT CLI in R81.10 works as expected otherwise i.e.

set access-rule rule-number 2 new-position 1 layer "Network" --format json

CCSM R77/R80/ELITE
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top