-
Notifications
You must be signed in to change notification settings - Fork 20
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
GetNetworkFirewallPolicy - not everything in output #142
Comments
@jbcintra |
@github-anurag |
just checked again, the CLI profile is my account, the SDK is an audit account, used for everything in OCI, and can read most of the policy object. I'll switch and check in case there are further permissions to apply for FW policy child objects?? |
@jbcintra See |
just checked with the audit user keys in the CLI (which the SDK uses) and it shows everything in the output |
@github-anurag |
@jbcintra Can you try modifying how you use the response a bit to match what I have :-
|
@github-anurag 2022-09-29 17:20:58.1583||INFO|cintra_oci_extract_sdk_featuretests.TestOciNetworkFirewall|FW: Firewall-TEST |
@github-anurag Will test now, thanks! |
@jbcintra |
@github-anurag So the object has the values in it, I've just got to get the JsonConverter to handle them properly and output to file! |
@github-anurag Then changed the serialize code to Newtonsoft syntax. The Newtonsoft SerializeObject command enumerates all of the dictionaries, populates and outputs them!! Thanks for your help on this, it got me working in the right direction. |
@jbcintra Also for Object Storage issue 121: That was a decision made by the Service team to make calls efficient and only return the info when the fields were sent to them. That was an issue in all SDK/CLI This issue is there because c# is strongly typed language so we need to convert it back to JSON string. Providing the solution mentioned here for reference:-
|
Hi, I've used the SDK to audit an OCI native Palo Alto firewall, to pull it's config. In checking with our firewall team and producing, it is missing a range of child data in the Policy object - Application list only has the protocol list not ports, URL lists are showing Allow only, not the Urls that have been input.
Testing the API itself via the CLI "oci network-firewall network-firewall-policy get --network-firewall-policy-id **** --profile ****" returns all of the child data, with min/max ports/types for Applications, all Security Rule config, url lists etc.
For UrlLists the JSON object output is showing "Allow": [{}, {}, {}, {}], which gives the right quantity of URLs, just not the values. Is there some additional command/option that's needed for it to pull all of the other data??? I also extract the full loadbalancer configs, which are way more complex/deeper layers, in a single call without issue.
The text was updated successfully, but these errors were encountered: