- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
07-05-2013 12:23 AM
Hi all,
Having a really simple archie with two ports in vwire (Allow all vlan and multicast on it), create a rule "trust to untrust allow all".
Issue is for dhcp request, I have to create a rule allowing dhcp answer from untrust to trust ....
In my mind there is no reason to do that .. If request is allowed, answer should be automatically.
Maybe someone have the same issue .... and find either the reason or a good explanation 🙂
V.
07-05-2013 01:10 AM
Sorry for missing info
PANOS is 5.0.5 and yes, when making a tcpdump on drop stage I can see dhcp packet dropped by palo.
V.
07-05-2013 01:47 AM
Doesn't seem to be right to me .You can open a case with Support for detailed Debug.
07-05-2013 02:05 AM
After short discution with one of our local Palo Se, he has the same issue.
Maybe a known bug ? will check with palo.
Rgds
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!