Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
8515
Views
0
Helpful
6
Replies

Rules per page

Go to solution
Isaiah
Level 1
Level 1

‎03-10-2017 12:27 PM - edited ‎03-12-2019 06:19 AM

Can I change the number of access control policy rules displayed per page in FMC?  It seems to default to displaying only 50 rules at a time, which is a bit low.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-11-2017 11:20 PM

You can't in FMC (as of the current 6.2); but you can list them all from the cli on your sensors.

From expert mode (log into sensor via ssh and type "expert"), use the following command (using "cat" as an example - you can munge the output with your choice of Linux commands):

cat /var/sf/detection_engines/*/ngfw.rules

You should also be able to get the same using the API.

Note you can change the default number of Connection Events shown in the GUI (from 25). That's found under your username > User Preferences > Event View Settings.

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-11-2017 11:20 PM

You can't in FMC (as of the current 6.2); but you can list them all from the cli on your sensors.

From expert mode (log into sensor via ssh and type "expert"), use the following command (using "cat" as an example - you can munge the output with your choice of Linux commands):

cat /var/sf/detection_engines/*/ngfw.rules

You should also be able to get the same using the API.

Note you can change the default number of Connection Events shown in the GUI (from 25). That's found under your username > User Preferences > Event View Settings.

0 Helpful

Go to solution
Isaiah
Level 1
Level 1
In response to Marvin Rhoads

‎03-13-2017 07:04 AM

Thanks for the answer.  I am disappointed in that answer, as obviously the GUI is where we spend most of our time, and dealing with the multiple pages of rules is just annoying.  But I appreciate knowing that I am not missing some option somewhere.

0 Helpful

Go to solution
prashant dwivedi
Level 1
Level 1
In response to Isaiah

‎09-06-2017 11:16 PM

Guys do know how we can export the pre-filter policies ?

 

I have pre-filter polciies and want them to be imported in an excel format for a reveiw purpose.

 

any inbuilt tool or script that can be helful on this please?

0 Helpful

Go to solution
jason_williams
Level 1
Level 1

‎03-27-2017 10:48 AM

See my python script below. It will allow you to dump the whole ACP to a CSV. It will not break out the network or port objects, but will give you a good way to review the rules. 

https://github.com/scourge71/fmcapi

0 Helpful

Go to solution
Isaiah
Level 1
Level 1
In response to jason_williams

‎03-28-2017 08:26 AM

Very nice - thanks Jason.

0 Helpful

Go to solution
govindchoudhary
Level 1
Level 1
In response to jason_williams

‎06-23-2021 04:50 AM

Hi williams,

 

Please share the python script again, as provided link not working. i have to extract and make list of all acl from FMC into excel sheet.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card