Palo Alto Networks PAN-OS 6.1 Release Notes • 29
PAN-OS 6.1.3 Addressed Issues
70304
Resolved an issue where a race condition could occur if new security policies were
matched to existing sessions when Rematch Sessions (
Device > Setup > Session) was
enabled.
70295
Fixed an issue where a commit failed when an aggregate subinterface with DHCP
client enabled was used for an IKE gateway configuration (
Network > Network
Profiles > IKE Gateway
).
70075
Fixed an issue where a lack of content resources on a PA-3000 Series firewall caused
some applications to be incorrectly identified or even fail. This fix ensures adequate
resources are available for identifying and supporting all traffic sessions.
70036
Fixed an issue where the web interface displayed partial or no results for report
requests. With this fix, report requests are completed properly and results are displayed
as expected.
69900
Fixed an issue where the tech support file did not contain some expected files,
including /var/log files.
69409
Fixed an issue where a security policy containing two nearly identical rules (the only
exception that the first rule contained a custom URL category with no specified URLs)
prevented some applications from matching the appropriate rule. With this fix,
applications match the correct rules and security policies are enforced as expected even
if an empty custom URL category is added to a rule.
69266
Fixed an issue where queries were not saved when clicking OK when configuring
Botnet reports after an upgrade to PAN-OS 6.0 and PAN-OS 6.1 release versions.
With this fix, queries built under
Monitor > Botnet > Report Setting in the web
interface are saved when clicking
OK and filters work as expected when running the
Botnet report. As a workaround, you can build the desired query in the web interface
but, before clicking
OK, copy the query text and enter it in the CLI using the set
shared botnet report query
command (the query then displays as a saved query in
the web interface).
69242
When a user failed to authenticate using the web interface, firewall system logs did not
display the user's source IP address. Updates have been made so that a failed
authentication on the web interface is logged with two entries. One entry is logged as
a g
eneral event and displays only the username of the user who failed authentication.
The other entry is logged as an
auth-fail event and displays both the username and
source IP address for the user who failed authentication.
69178
Fixed an issue where the DNS Proxy service was aborted when the file descriptors for
TCP-based DNS request sessions were prematurely closed. With this fix, TCP-based
DNS request file descriptors are allowed to age out and be deselected when no longer
needed.
68770
Fixed an issue where a working IPSec tunnel would not reestablish after a NAT
configuration was removed. With this fix, IPSec tunnels will successfully reestablish in
response to the removal of NAT along the IPSec tunnel path.
67930
Fixed an issue where an update to a stale IPv6 neighbor entry caused a dataplane
restart.
Issue Identifier Description
(104 páginas)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais