Synchronizing Security Zone Object Revisions
When you update a security zone object, the system saves a new revision of the object. As a result, if you have managed devices in the same security zone that have different revisions of the security zone object configured in the interfaces, you may log what appear to be duplicate connections.
If you notice duplicate connection reporting, you can update all managed devices to use the same revision of the object.
This procedure applies to NGIPSv.
Procedure
Step 1 | Choose . |
Step 2 | Next to the device where you want to update the security zone selection, click Edit ( In a multidomain deployment, if you are not in a leaf domain, the system prompts you to switch. |
Step 3 | For each interface logging duplicate connection events, change the Security Zone to another zone, click Save, then change it back to the desired zone, and click Save again. |
Step 4 | Repeat steps 2 through 3 for each device logging duplicate events. You must edit all devices before you continue. |
What to do next
-
Deploy configuration changes; see Deploy Configuration Changes.
Caution | Do not deploy configuration changes to any device until you edit the zone setting for interfaces on all devices you want to sync. You must deploy to all managed devices at the same time. |