Global Controller group usage

Unanswered Question
May 14th, 2008
User Badges:

We have GC Gen1 and multiply LCs Gen 1.

I have a question about usage of groups and drop rules. I would like to use Global groups and add device/networks to these global groups and then use those groups in drop rules on the LC controllers. Problem is when I view the Global group on an LC it only shows the Device/networks local to that box. With that said the rule does not consider the other device/networks that are part of the global group. Is there a way that is can work? Why I would want to do this, well for example lets take some internal subnets that generate certain type of traffic to inside subnets at different locations. It is easier to add all inside subnets to the Global group and then write drop rule on LCs using the global group as the scr and dst.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
owillins Tue, 05/20/2008 - 06:15
User Badges:
  • Silver, 250 points or more

Try this :

Modify the rule with a dummy action, click activate, wait for a couple of minutes, remove the dummy action and again click activate to cause the GC to synchronize the rule to the LC.


This Discussion