.png "Satish"){kind=avatar}
06-26-2015 07:14 AM
Dear Friends,
Need your suggestion for below issue.
PAN OS 6.0.9
Unable to download app from play store thru mobile.
There have wi-fi environment, when mobile (smart phone ) users connected thrue wi-fi, he is able to browse internet but not able to download any app from google play store.
security policy like source wi-fi zone destination untrust application any service any action allow.
06-26-2015 08:50 AM
No security profiles added to security policy?
What logs show when you filter diferent logs with those filters?
Traffic
( action neq allow )
Threat
( action neq alert )
URL
( action neq alert )
Data
( action neq alert )
Anything blocking?
06-26-2015 08:59 AM
Hi Raido,
There is no such kind of security profile (security profile none) and in logs showing application = Incomplete or Insufficient data.
Thnx
Satish
06-26-2015 02:05 PM
I would start troubleshooting by checking box "log at session start" on policy's Action tab.
This will generate log entry for every application shift.
And check if anything strange there.
No decryption policyes in place?
06-26-2015 02:51 PM
Can you find the logs for the specific attempt to download from the play store?
06-26-2015 07:18 PM
Hi Raido,
No any decryption policies.
Regards
Satish
06-26-2015 07:21 PM
Hi Steven,
i cant think so only showing incomplete application thats all and also tried pcap file. we didn't get any drop packet.
Regards
Satish
06-27-2015 03:16 AM
If you don't have any security profiles (security profile none as you mentioned) then you don't see file downloads in logs.
Configure file blocking profile to log all and add it to security policy.
06-27-2015 04:26 AM
I would try to setup a span port and do a full pcap of the transaction if at all possible. I think we really need to see the closing packets of the session to understand why the transaction is failing.
You may also want to open a ticket on this with support. They have access to deeper levels of logs and session status that could shed light on the issue.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
