On This Page
Configuring Panorama Pre/Post in Designer
Overview
When Designer adds new rules or edits existing ones in Panorama, it can do so in either the pre or the post section. The default rule location is the pre section, but you can change this setting in stconf. You can also configure the rule location for individual devices.
Changes made to the configuration will only affect new Designer suggestions. To apply the configuration change to existing Designer suggestions, run Designer again.
Configuration Procedure
-
Navigate to:
https://<SecureTrack_IP>/securetrack/admin/stcgitest.htm -
Navigate to Edit StConf > Fetch Current Conf.
-
In the
stconffile, locate <Designer_Panorama_Default_Section>Example
-
To change the default location, edit the parameter between the
<Location>tags. Choose between:-
<Location>pre</Location>- sets the default location to "pre" -
<Location>post</Location>- sets the default location to "post"
-
-
To change the location for an individual device, add:
where
- [MANAGEMENT-ID-NUMBER] is the ID number of the management device whose location you want to specify. This definition extends to any other devices found beneath this device in the hierarchy.
- [LOCATION] is pre or post.
Add a new row for each device whose rule location you want to configure.
-
Click Submit New Conf.
Example
<Designer_Panorama_Default_Section>
<Location>pre</Location>
<Location management="1">post</Location>
<Location management="2">post</Location>
</Designer_Panorama_Default_Section> where
-
<Location> pre </Location>sets the pre location as the default
-
<
Location management="1">post</Location> specifies that the rule location for Management Device 1 (and all devices underneath it in the hierarchy) will be in post -
<
Location management="2">post</Location> specifies that the rule location for Management Device 2 (and all devices underneath it in the hierarchy) will also be in post
Was this helpful?
Thank you!
We’d love your feedback
We really appreciate your feedback
Send this page to a colleague
