Comments (5)
liangjian1999
commented on July 20, 2024
1
Another option is to submit a support case to Meraki. But of course Shiyue will offer the best in class support directly.
from dashboard-api-python.
shiyuechengineer
commented on July 20, 2024
I suppose you should thank Cisco Meraki for my job. 😄
Which API endpoint are you working with exactly? Have you tried testing, both with the API call and in dashboard UI?
from dashboard-api-python.
vitaliymsms
commented on July 20, 2024
Another option is to submit a support case to Meraki. But of course Shiyue will offer the best in class support directly.
The problem is, I've already opened a case to Meraki support (Case 04777604). The official answer is we don't know and can't give you an answer.
from dashboard-api-python.
vitaliymsms
commented on July 20, 2024
I suppose you should thank Cisco Meraki for my job. 😄
Which API endpoint are you working with exactly? Have you tried testing, both with the API call and in dashboard UI?
I'm adding a firewall rule using the following query. (PUT/networks/{networkId}/appliance/firewall/l3FirewallRules)
Everything works well, but my question is - what is the limit on the number of IP addresses in one rule. (or there is a limit on the line (destCidr) size)
For example, the Windows Firewall has a limit of 1000 entries (addresses or subnets) per rule.
Thank you for your help. Waiting for your response.
from dashboard-api-python.
shiyuechengineer
commented on July 20, 2024
While there are certainly limits to what the appliance can handle in terms of processing, and in addition, limits to what you can set in the UI and via API in terms of maximum payload (as nothing is infinite), you'll find that adding more IP addresses & rules beyond a certain point will take much longer to process (both in UI and via API).
That being said, 1000 addresses per rule is something I've seen only occasionally on customers' networks, and while it might not be the best way to design security, having a few of these "mega" rules isn't out of possibility.
For example: I just ran a quick, successful with the following snippet to create a rule with 256^2 = 65536 IP addresses for the destCidr field:
import meraki
dashboard = meraki.DashboardAPI(single_request_timeout=300)
addresses = ''
for x in range(256):
for y in range(256):
addresses += f'10.0.{x}.{y},'
addresses = addresses[:-1]
rules = [
{
'policy': 'allow',
'protocol': 'any',
'destPort': 'any',
'destCidr': addresses,
'srcPort': 'any',
'srcCidr': 'any',
}
]
network_id = 'L_629378047925041309'
rules = dashboard.appliance.updateNetworkApplianceFirewallL3FirewallRules(
network_id,
rules=rules,
)
addresses = rules['rules'][0]['destCidr']
print(len(addresses.split(',')))from dashboard-api-python.
Related Issues (20)
- createOrganizationPolicyObject type not found HOT 3
- function not passing 'type' variable HOT 1
- Early Access Supported Calls HOT 1
- Incorrect kwarg is not logged or rejected HOT 4
- Identity PSKs always return null for expiresAt field HOT 1
- 204-No Content error HOT 1
- Logging level HOT 2
- This library requires Python 3.7 at minimum and your interpreter version is 3.10.0 HOT 1
- aiomeraki.organizations.getOrganizationApiRequests failing after upgrading the SDK from 1.34.0 to 1.36.0 HOT 5
- aio/rest_session.py crashing on 400 errors with a UnboundLocalError HOT 6
- 'Wireless' object has no attribute 'getOrganizationWirelessDevicesEthernetStatuses' HOT 1
- Async operations gets a certificate error (while sync operation works fine) HOT 10
- Library crashes with AttributeError when API returns 404 with no body HOT 1
- meraki 1.39 shows support for python 3.7 HOT 1
- installation fails on Windows HOT 1
- batch.networks.removeNetworkDevices has the incorrect operation HOT 2
- passing pagination (total_pages) params to getOrganizationApplianceTrafficShapingVpnExclusionsByNetwork results in error HOT 4
- Minor Documentation Spelling Error HOT 2
- API Endpoint /organizations/{organizationId}/wireless/radio/autoRf/byNetwork Missing HOT 1
- Generator does not add the required query parameters to methods if the query parameters are arrays of objects HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dashboard-api-python.