01-27-2023 12:51 PM
I have got another problem I am trying to solve... When I use this URL to get the access rules for a policy, it gets the rules for its parent as well...
“/api/fmc_config/v1/domain/{domain_id}/policy/accesspolicies/{accesspolicy_id}/accessrules?limit=500&expanded=True”
Is there a way to only get it for the child policy?
Just in case you are curious about what I am trying to do. I want to duplicate a policy with the same prefilter and inheritance settings and with the same rules but without the Interface Zones in the configuration.
Thanks!
01-27-2023 01:35 PM
The issue is with inheritance from the "parent policy". So, unless you are able to disable inheritance from the base policy (via GUI or API) then the only other thing you can do to filter out the rules you want is to write a script that extracts the Child Rules for you. i.e. copy the complete Child Policy rules, then delete the Base Policy rules.
01-27-2023 03:15 PM
Thanks for confirming Marius! Mind also helping me with my other question about inheritance?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide