This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
Expedition 1.2.42 Hotfix Information
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- Tools
- Expedition
- Expedition Release Notes
- Expedition 1.2.42 Hotfix Information
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Printer Friendly Page
dpuigdomenec
L4 Transporter
Version 1.2.42 (Date Nov 8, 2022)
PACKAGE DOWNLOAD
| INFORMATION | |
|
Link |
https://conversionupdates.paloaltonetworks.com/expedition-updates/expedition_1.2.42.all.deb |
|
sha1sum |
a2a74efc375a0533378c2aef995a2d1ab0d45173 |
| apt update |
sudo apt-get update; sudo apt-get install expedition-beta |
| manual update | cd /tmp; wget https://conversionupdates.paloaltonetworks.com/expedition-updates/expedition_1.2.42.all.deb; sudo dpkg -i expedition_1.2.42.all.deb; |
CHANGELOG
Improvements
- MT-2504 - FORTINET - Expedition was expecting policies to be defined on the section "config firewall policy" but new Fortinet version contains policies ALSO in the section "config firewall security-policy". Added support to read both "sections" as Fortinet could have policies defined on both of them.
Bug
- MT-2501 - STONESOFT - Reading address objects domain_name twice. Expedition is creating duplicated entries for address object typed as domain_name. Resulting on having duplicated address objects by name.
- MT-2500/MT-2493/MT-2502: CISCO NAT issues:
- A NAT rule with an address group as original source and a single address as translated source could not be defined as static-ip, instead the NAT rule is defined as dynamic-ip-and-port.
Example: nat (in, out) source static Network-Group Network-address destination static Network-Destination Network-Destination - A NAT rule containing address groups as source, destination, translated source or translated destination named DM_INLINE* are replaced by its address members.
- A NAT rule with an address group as original source and an address group as translated source having different names BUT with the same members is considered a no source NAT.
Example:
object-group network DM_INLINE_NETWORK_1
network-object object 1.2.2.2
network-object object 1.1.1.1
object-group network DM_INLINE_NETWORK_2
network-object object 1.2.2.2
network-object object 1.1.1.1
nat (in, out) source static DM_INLINE_NETWORK_1 DM_INLINE_NETWORK_2 destination static Network-Destination Network-Destination - A NAT rule with the same original and translated destination (without port translation) is not considered as DNAT rule, also translated destination is set to none.
Example: nat (in, out) source static Original-Source TP-Source destination static Network-Destination Network-Destination - A NAT rule with a bidirectional source translation and a destination translation (original and translated destination are NOT the same) is created as a NAT rule in Expedition with a Monitor log and the bidirectional flag disabled.
Labels:
Rate this article:
Related Content
- Expedition 1.2.81 Hotfix Information in Expedition Release Notes
- Expedition 1.2.80 Hotfix Information in Expedition Release Notes
- Expedition 1.2.79 Hotfix Information in Expedition Release Notes
- Expedition 1.2.78 Hotfix Information in Expedition Release Notes
- Expedition 1.2.77 Hotfix Information in Expedition Release Notes
Labels
-
changelog
103 -
CVE-2021-44228
1 -
expedition
104 -
hotfix
103 -
Release Notes
1 -
release notes expedition
1
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks