11-20-2013 01:21 AM
Hey all,
I am using multiple PBF rules and am 100% sure that nearly half of them have been hit after the last reboot. However, when I select "Highlight unused rules", it highlights all my rules..
Anyone else seeing this?
Kind regards,
Bob
11-20-2013 04:43 AM
Hello Bob,
The best way to make sure your PBF rules are hit in GUI is to pull down another column 'Egress IF' in traffic logs and verify the traffic is going out on the interface you specified in pbf policy.
Other way to check is through CLI command.
>show pbf rule all
Make sure all rules are active.
>test pbf-policy-match source <ip-address> destination <ip-address> protocol <number> destination-port <number>.
Regards,
Hari Yadavalli
11-20-2013 04:51 AM
Yes, I know, that's how I was 100% sure that the rules were being hit.
But it made no sense to me that they were highlighted as unused and was wondering if this is a bug or not.
Kind regards,
Bob
11-20-2013 05:23 AM
Hello Bob,
There was a known issue related to highlight unused rules and fixed in OS version 4.1.8.
Can you confirm the OS version?
Regards,
Hari Yadavalli
11-20-2013 06:57 AM
Hey,
PANOS 5.0.3
Kind regards
11-20-2013 09:51 AM
Hello,
Have you tried to run the below command and see the results,
"show running rule-use rule-base pbf type unused vsys vsys1"
Would the results look different from the GUI. Pls share.
Thanks
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
