This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
About SpiroKU
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About SpiroKU
7Posts
1Like
0Solutions
Last Visited
User
Activity
User
Profile
Latest posts by SpiroKU
| Subject | Views | Posted |
|---|---|---|
| 723 | 12-21-2022 03:41 PM | |
| 746 | 12-21-2022 02:48 PM | |
| 815 | 12-21-2022 10:51 AM | |
| 432 | 07-15-2022 07:36 AM | |
| 1335 | 04-01-2022 11:09 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 04-01-2022 11:09 AM |
User Badges
Community Statistics
| Member Since | 03-07-2022 06:49 AM |
| Date Last Visited | |
| Posts | 7 |
| Total Likes Received | 1 |
12-21-2022
03:41 PM
Good news
Content 8657-7768 released - "removed false positive"
... View more
12-21-2022
02:48 PM
Yeah, true they are unpredictable but saw on my other post on Reddit that many are complaining and having the same issue. You look at Citrix-director and you dont think twice about what it does. In our case, we dont use it in our environment. Why some SQL queries work and others done is beyond me.Hope its fixed soon though, will look out for another update from Palo Alto.
... View more
12-21-2022
10:51 AM
So, this morning, all going swell. P1. Hm, okay. Looks like an application issue, SQL related. Nothing on the firewall or policies were touched.
The policy is using Layer 7 App-ID MS-SQL to get a server to communicate with the MSSQL server over TCP-1433.
At the end of the day I had an idea to remove protect profiles and drop from Layer7 to Layer4. Seemed to fix the issue - strange. Added protect profiles - still worked. Remove service ports 1433 and went back to MS-SQL - broken.
Okay, I read the dynamic update for 8656-7766, this was implemented on the firewall at 2am, and looking now, it has a 8hr delay before it installs. Standard.
The content update says they implemented a new application called citrix-director which depends on MS-SQL and was previously classified as MS-SQL. I saw one service trying to use it but the other did not so did not think too much of it.
I suspect something in this update broke traditional MS-SQL communication as we were getting the below error:
" SQL Error -1, Data access error. A transport-level error has occurred when receiving results from the server. (provider: Session Provider, error: 19 - Physical connection is not usable)".
As soon as I drop to Layer4, seems to have fixed it because it becomes application independant.
Anyone else have this same issue? Maybe someone from Palo Alto should investigate this! We dont use a Citrix product, our SQL servers are MS-SQL based.
Regards.
... View more
07-15-2022
07:36 AM
So update from me, upgraded to 10.1.5-H2. I mean, the logging seems slightly better but cant say it performs the same way as it did in PANOS 9.1 which is a shame. Also I have stopped relying on any data past 5 days. In addition, 10.1.5-H2 seems to have broken the global find where you expand objects, or well at least for me, and the generate certificate in the certificate store seems to place it in the wrong location in the running config (case opened with Palo Alto).
So, while it may be that upgrading fixes one thing, it breaks another. Wish I could downgrade but Palo Alto forces you to use 10.1 if you want Advanced URL filtering which too still shows as "License required for URL Filtering to function".
Regards.
... View more
04-01-2022
11:09 AM
1 Kudo
I was reading the 10.1.5 release notes that came out. Some mention around logging and possibly improvements but does not give too much specifics. I will possibly update to 10.1.5 and let you know. PAN-186725 - "Fixed an issue where index creation failed when Elasticsearch attempted to create a new index with a duplicate index name" PAN-186516 - "Fixed an issue where log queries that included WildFire submission logs returned more slowly than expected" PAN-184076 - "Fixed an issue on the firewall web interface where logs were delayed when querying for logs."
... View more
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks