Hi
We have a number of vShield edge devices some are using global objects some are tied to the edge devices themselves. Is there away to export the rules for one edge device to another within the same vShield manager or another vShield manager?
We have a number of edge devices that require the same rules and objects i.e. test / development environments.
The extract below seems to indicate this can be done https://www.vmware.com/support/vshield/doc/faq_vshield_41.html
Can vShield Edge firewall rules be exported to another vShield Edge? Yes, vShield Edge firewall rules can be replicated to another vShield Edge instance. All of the configuration information is stored by the vShield Manager, which would be used to backup and restore these configurations. REST APIs can also be used to save and restore configurations.
I have also tried the API for vShield but the IPSET's and services seem to be tried to global root or an edge device; if you export the rules from one to another the ID's don't match up in the extracted firewall rule base!!
Using vShield Manager 5.1
Thanks