cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Inconsistent BPA Results

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Inconsistent BPA Results

magates
L2 Linker

‎10-16-2018 01:28 PM

I am getting unexpected results with Best Practice Analysis. For instance, Going to Best PracticeSecurity Policies shows red X for all tags and many descriptions, but the majority of my policies have both.  

Also, the adoption diagram shows 0% for High Availability, but I have HA configured to nearly all best practice specifications. Dynamic Updates is similar, shows 60% but I have it configured to complete best practice specs.

 

Just wondering if this is user error, a bug, or if BPA is not 100% production ready yet.

1 person had this problem.
0 Likes Likes
8 REPLIES 8

alestevez
L7 Applicator

‎10-19-2018 06:51 AM

Hi,

 

We upgraded the BPA to the latest version 3.6.1 in our Expedition 1.0.107, can you update and try with that to see if still doesnt make sense the output? Thx

0 Likes Likes

magates
L2 Linker
In response to alestevez

‎10-19-2018 07:46 AM

Just updated to 1.0.107, getting the same results.

0 Likes Likes

alestevez
L7 Applicator
In response to magates

‎10-19-2018 07:47 AM

Have you run the BPA after the update and you get same results? What are the ones you think are incorrect? Thx

0 Likes Likes

magates
L2 Linker
In response to alestevez

‎10-19-2018 07:54 AM

I have; I also created a new project, imported, and ran BPA with same results. The items listed in my original post are incorrect.

Additionally, as a test I implemented allowed IP addresses on my management interface, but the check still fails as though it is not implemented.

0 Likes Likes

alestevez
L7 Applicator
In response to magates

‎10-19-2018 07:59 AM

Im adding Customer success to check since the BPA is something we cannot change by our own 🙂 I will update here with the findings

0 Likes Likes

magates
L2 Linker
In response to alestevez

‎10-19-2018 08:01 AM

Thank you, I appreciate your assistance.

0 Likes Likes

anmendoza
L2 Linker
In response to magates

‎10-24-2018 08:45 AM

Hi magates, can you please send an email to customersuccesstools@paloaltonetworks.com so we can help troubleshoot your issue?

0 Likes Likes

KlausGroeger
L3 Networker

‎10-28-2018 04:32 AM

Have the same issue here. Running latest version 1.0.107 with BPA 3.6.1. All policies have tags red x-ed while only four out of 73 policies has no tag.

0 Likes Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2022 - Palo Alto Networks