Support Center > Search Results > SecureKnowledge Details
Policy verification/installation errors cannot be seen in GUI due to message encryption failure Technical Level
Symptoms
  • Policy verification/installation errors cannot be seen in the GUI due to message encryption failure.
  • Relevant fwm debug:
    [FWM 13603 1945163456]...[12 Jan 8:12:04] ...--> CFw1BasicDecoder::OnVerify
    [FWM 13603 1945163456]...[12 Jan 8:12:04] Encoded message: **##MSG_IDENTIFY##**2&2&Rule 37 (Corsential MPLS <> GA prod) Hides rule 38 (CEM HO users > GA dev&ops) for services any ^ARule 37 (Corsential MPLS <> GA prod) Hides rule 40 (Corsential MPLS > GA http in) for services HTTP_and_HTTPS_proxy http ^A&&&0
    [FWM 13603 1945163456]...[12 Jan 8:12:04] Failed to decode message: **##MSG_IDENTIFY##**2&2&Rule 37 (Corsential MPLS <> GA prod) Hides rule 38 (CEM HO users > GA dev&ops) for services any ^ARule 37 (Corsential MPLS <> GA prod) Hides rule 40 (Corsential MPLS > GA http in) for services HTTP_and_HTTPS_proxy http ^A&&&0
    [FWM 13603 1945163456]...[12 Jan 8:12:04] ...<-- CFw1BasicDecoder::OnVerify
    [FWM 13603 1945163456]...[12 Jan 8:12:04] ..<-- CFw1Decoder::Decode
    [FWM 13603 1945163456]...[12 Jan 8:12:04] Failed to decode ' **##MSG_IDENTIFY##**2&2&Rule 37 (Corsential MPLS <> GA prod) Hides rule 38 (CEM HO users > GA dev&ops) for services any ^ARule 37 (Corsential MPLS <> GA prod) Hides rule 40 (Corsential MPLS > GA http in) for services HTTP_and_HTTPS_proxy http ^A&&&0&'
    ** fwm fails to decode verify message and doesn't add it to the messages list.
Cause

Rule names that contains "&" character and that are involved with any policy verification/installation error will not be displayed in the error window on SmartDashboard. This character is used for the encryption method, and therfore it fails the decryption process for the related rule name. The error message will not be seen in the GUI (only in cli command).


Solution
Note: To view this solution you need to Sign In .