mirror rule sets of existing ip/host to new ip/host

Hi,

 couple of options, really depends on how many rules you have?

1/. clone the rules

2/. export as an xml file and add the new device rules.

Ian

But how do I see all the rules the original IP/host has or is on?

Is this the best approach surely there should be a filter on the firewall rules to enter in an IP and it will list all the rules that IP is a member of?

So you mean filter out the host/IP used in the number of firewall rules used ?

Basically see what rules that ip is a member of

Hey Sophos User1175 , have you tried using the following filter?

Hi Vivek,

is there a KBA on the use of this search function. I have tried to use it and not returned any meaningful results. The source networks only allows selection of external networks/FQDNs, unless the device you are searching for is in the FQDN list you cannot use IP addressing.

Ian

Nope, but this is introduced in v19.0 GA to enhance user experience, Object search: You can search for a network object or service for inclusion in rules and policies. It includes a free-text search option that allows you to search by label or value, enhancing the user experience.

Hi Vivek

I cannot add an IP address.

Ian

Hey rfcat_vk  You can add the IP under the IP host first

Then you can add it to search filter:

Hello,

if you go to "Hosts and services", then use the search box, while you are in "IP host", you will get a list as result. Then look at the column with "usage" as headline, there you click on that entry, if this is used at multiple places and/or rules, then you get a list where this object is being used.

This will look like this:

Thank you for the expanded answer, that is why I asked about the KBA.

There is one little trap if you have not created your devices in the hosts and services then you can't find where they appear.

There does not appear to be anyway to search for an IP address and which rules it appears in?

But, if you export the configuration as an XML file, then you can search.

Ian

Thank you for the expanded answer, that is why I asked about the KBA.

There is one little trap if you have not created your devices in the hosts and services then you can't find where they appear.

There does not appear to be anyway to search for an IP address and which rules it appears in?

But, if you export the configuration as an XML file, then you can search.

Ian

Indeed I understand will work with the KBA team to get it published for better understandability...