How to delete an address object/service object used in Multicast zone.
03/26/2020 1,167 People found this article helpful 100,251 Views
Getting Error message : Object is in use by NAT policy/Access rule . When trying to delete an address object
When trying to delete an address object in Management GUI, we get an error " Error: Address object in use by Access rule/NAT policy.
This error would mean that the address object we are attempting to delete is already being used by either an access rule or NAT policy. To find out where the address object is being used:
1. Place the cursor on the comment area and it would give you the details of where the address object is being used (as shown in image below).
2. Download the TSR report. Search for the address object name/IP, it would show the Access rule/NAT policy where this address object is in use.
TIP: Follow the above link to download the TSR report.
Here, Access policy table ref count: 1 would mean that the Address object is being used by an access rule with index number #1.
Now if you see the address object in the access rule, delete the access rule and you would be able to delete the address object successfully.
If address object is being used by multicast zone and multicast mode is not enabled globally and on interface, then follow the steps below to enable multicast mode:
1. Enable Multicast support under interface advanced section.
2. Go to Firewall settings | Enable Multicast (for all multicast addresses).
Once Multicast mode is enabled, now you would see all multicast access rule and the rule in which address object is being used.
Once the rule is deleted. Try to delete the address object now and you would be able to delete it successfully.