FW rules via API - Not accepting FQDN

Fastburner
Here to help

FW rules via API - Not accepting FQDN

Hi guys,

 

I am trying to update some FW rules via API and cannot get it to accept FQDNs within the "destCidr" value inside JSON data. It works fine with IPs but not FQDNs - Even the meraki docs say it should be supported...

 

destCidr

Comma-separated list of destination IP address(es) (in IP or CIDR notation), fully-qualified domain names (FQDN) or 'any'

 

 

The error I am returned is:

 

"{
    "errors": [
        "At least one of your firewall rules is invalid: \"network[firewall_rules][0][dst_cidr] Destination address must be an IP address or a subnet in CIDR form (e.g. '192.168.1.0/24'), a VLAN address using the VLAN ID (e.g. VLAN(10).*, VLAN(10).8) or 'any'\"."
    ]
}"
 
 
Any ideas would be appreciated! Thanks.

 

2 Replies 2
Fastburner
Here to help

For more insight... it seems you can add FQDN for L3 outbound rules but not for Cellular failover rules? Is this a forgotten feature to be added by Meraki?

NJNetworkGuy100
Getting noticed

Could you post an example of your code to see what's going on?  I've updated L3 firewall rules via API in Python before with no issue, and have had IP, FQDN, and even a mixture of two as the Destination string value.  

Get notified when there are additional replies to this discussion.