Threat / AV signatures after OS EOL.

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Threat / AV signatures after OS EOL.

L4 Transporter

Will AV /  Threat Signatures still up date on 8.0 after EOL?

 

I only found out it was going EOL when I logged into another of our clusters with 8.1 which told me on the MOTD..

 

The MOTD on the 8.0 has no such message.

 

I have had  look through the "Palo Alto Networks Content Update" emails and can't find any warning. Even on the 8.0.20 release there's nothing to say it's going to be EOL in a few days...

 

Cheers

 

Rob

 

7 REPLIES 7

Community Team Member

Hi @RobinClayton ,

 

Dynamic updates should continue to update.  That said I can only urge you to update the OS asap.

 

Raising the minimum PAN-OS release to PAN-OS 6.1 for Applications and Threats content updates 

 

Cheers !

-Kiwi.

 

 
LIVEcommunity team member, CISSP
Cheers,
Kiwi
Please help out other users and “Accept as Solution” if a post helps solve your problem !

Read more about how and why to accept solutions.

Yeah the Dynamics are what I need to confirm.

 

My colleague did a web chat with someone who said they would.

I have a support call with the UK premium support partner that said they would not..

 

The firewall is a HA pair and although it has been tested for a live update fine, it now passes a very very important subset of traffic that we have never tested to ensure the traffic is not interrupted. So we need to very carefully consider the timing of the upgrade with the third party. And it's a busy time of year for that part of the system.

 

Rob

 

 

 

And Palo Support have just also responded...

 

With an irrelevant article on licence expiration,

Confirming no further releases of 8.0.x

 

But not answering the Actual question about dynamic updates!!

 

Rob 

We have 6 ha pairs, and when I have done HA upgrades, I have never had issues with traffic dropping.  GlobalProtect users stay connected on fail over and have never dropped either.

 

My method is to upgrade secondary, then manually failed to it, upgrade primary, then fail back to the primary.  

 

Never had any issues going from either upgrading point releases or 8->8.1 or 8.1 -> 9.0.

 

Granted your mileage may vary. 

It's just this one particular traffic stream that I personally am cautious of otherwise we would just crack on. We can stop the traffic but it puts a lot of public customer facing systems out of order, and really we want to test it properly so we have the confidence to do it without going offline.

 

It's just the timing is not good and if we can delay it till the new year that would be better.

 

Hence if Dynamic Content continues we have the option.

Both PA and Partner Support UK (Westcon) both initially responded by just sending across the link to the EOL document and not answering the question.

 

PA eventually confirmed from "Research" that Dynamic Updates would be fine.

 

Westcon said dynamic content would stop, but after I suggested that PA said it was fine, they went away and confirmed the answer from PA..

 

And now 7 days later we are still getting updates ok....

 

 

This should have been a simple question with a simple straight answer, and one that could be found easily!!

 

Cheers

 

Rob

 

Hello,

We are running 9.0.4 and no issues. However we dont have any of the items that are having issues in the release notes. 

 

Always read the release notes!

 

Cheers!

  • 3636 Views
  • 7 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!