Closed jkaczmarski09 closed 1 year ago
Suppose we have the following DG hierarchy:
shared - DG_A - DG_B
DG_A has addr1 with value 1.1.1.1 DG_B has addr1 with value 2.2.2.2
addr1
1.1.1.1
2.2.2.2
Moving addr1 from DG_B to shared is possible and no warning is displayed that such action results in addr1's value for DG_B changing from 2.2.2.2 to 1.1.1.1.
DG_B
shared
Command used: pan-os-php type=address in=panorama.xml location=DG_B 'actions=move:shared,skipIfConflict'
pan-os-php type=address in=panorama.xml location=DG_B 'actions=move:shared,skipIfConflict'
If option skipIfConflict is used the address object should not be moved or a warning message should be displayed.
skipIfConflict
Address object is moved to shared without any warning message.
When object is moved 2 or more levels in DG hierarchy check if after moving it will not become overridden by an object lower in the DG hierarchy.
Create simple config as presented in the bug description.
$ pan-os-php version
fixed with v2.1.6
swaschkut
commented
1 year ago
Describe the bug
Suppose we have the following DG hierarchy:
DG_A has
addr1with value1.1.1.1DG_B hasaddr1with value2.2.2.2Moving
addr1fromDG_Btosharedis possible and no warning is displayed that such action results inaddr1's value forDG_Bchanging from2.2.2.2to1.1.1.1.Command used:
pan-os-php type=address in=panorama.xml location=DG_B 'actions=move:shared,skipIfConflict'Expected behavior
If option
skipIfConflictis used the address object should not be moved or a warning message should be displayed.Current behavior
Address object is moved to shared without any warning message.
Possible solution
When object is moved 2 or more levels in DG hierarchy check if after moving it will not become overridden by an object lower in the DG hierarchy.
Steps to reproduce
Create simple config as presented in the bug description.
Your Environment
$ pan-os-php version