Where Can I Use
This? | What Do I Need? |
- NGFW (PAN-OS & Panorama Managed)
- Prisma Access (Managed by Panorama)
| Check for any license or role requirements for the products you're using. |
On a firewall that has more than one virtual system (vsys), you can move or clone
policy
rules and objects to a different vsys or to the Shared location. Moving
and cloning save you the effort of deleting, recreating, or renaming rules and
objects. If the security rule or object that you will move or clone from a vsys has
references to objects in that vsys, move or clone the referenced objects also. If
the references are to shared objects, you do not have to include those when moving
or cloning. You can
Use Global Find to Search the Firewall or
Panorama Management Server for references.
When cloning multiple security rules, the order by which you select the rules will determine the
order they are copied to the device group. For example, if you have
rules 1-4 and your selection order is 2-1-4-3, the device group
where these rules will be cloned will display the rules in the same
order you selected. However, you can reorganize the rules as you
see fit once they have been successfully copied.