AnsweredAssumed Answered

show-access-rulebase web API call not returning UID for last rule in a section.

Question asked by Tony Young on Jan 11, 2019
Latest reply on Jan 14, 2019 by Dameon Welch-Abernathy

BACKSTORY:

So I'm trying to do some cleanup on some firewall policies that are getting out of hand. I've already created a script to mass delete unused objects, and now I'm going after disabled rules. I want to filter out all disabled rules in each policy and store the UID into a CSV for a later script to go in and delete everything. I want to wait a month and then check again and mass delete any rules that are still disabled.

 

 

PROBLEM:

I'm using Web API version 1.2 and I'm running into an issue with the API call not returning the UID for the last rule in each section. I see the UID for all other rules except for the last one in each section. When I query the rule directly I get it, but when I curl /show-access-rulebase it is not there. I want to use UID rather than rule number or name because I think it would be more accurate after a months worth of firewall changes.

 

QUESTIONS:

Is there some reasoning for this?

We are upgrading to R80.20 GA soon. Is this issue is fixed in API 1.3?

Does UID ever change on a rule?

 

Thanks,

Tony

Outcomes