内容
Firewallルールにシングル・クォート(')が使用されると、config-syncが失敗する。
解決策
この問題を解決するには、VRAを1912h以降のパッチ (最新のパッチは 1912p) にアップグレードする。
例
[シングルクォートを入れてみる]
set security firewall name TEST rule 10 description 'TEST'
vyatta@host1# commit
syncing configuration to remote-router 10.192.189.xxx ..
config-sync error 10.192.189.xxx:Not connected to NETCONF server
syncing configuration to remote-router 10.192.189.xxx ..
remote-router 10.192.189.xxx sync done
vyatta@host1:~$ show config-sync status
remote user is not in secrets group - may incorrectly report not in sync
remote-router: 10.192.189.xxx
version: 1912f
sync-map: SYNC
last sync status: succeeded
last sync time: 2021-08-21 15:17:24.053624
last successful sync: 2021-08-21 15:17:24.054644
in-sync?: no
access-status: connected
remote user is not in secrets group - may incorrectly report not in sync
remote-router: 10.192.189.xxx
version: 1912f
sync-map: SYNC
last sync status: FAILED
last sync time: 2021-08-21 15:17:23.250990
last successful sync: 2021-08-21 15:17:58.603800
in-sync?: no
access-status: connected
vyatta@host1:~$
vyatta@host1:~$ show config-sync difference
remote user is not in secrets group: difference may incorrectly report not in sync
10.192.189.xxx configuration is out of sync
remote user is not in secrets group: difference may incorrectly report not in sync
10.192.189.xxx configuration is out of sync