About Laurent_Dormond

Hello,   I have configured External Dynamic Lists by using Minemeld a few month ago. It was workinf fine.   The lists are available (tried from a web Browser)   I noticed that I have following system logs for a few weeks :   Unable to fetch external dynamic list. Failure when receiving data from the peer. Using old copy for refresh.   We are running PanOS 10.0.7.   How can I troubleshoot this problem ?   Regards,   Laurent   ... View more

Hello,   I have a question about the mechanism of TCP session timeout on PA FW. Assuming that default TCP timeout on PA device is 3600 seconds. What happen after a TCP session is idle after 3600 seconds ? Does the FW send TCP RST at each endpoints ? Or does it just delete the session from its sessions table ? And in this case if a new packet is sent from either endpoint, is it dropped by the FW ?   To specify the context, we are currently trying to troubleshoot some kind of disconnection issues related to one particular custom-built application. This is a common 2-tier application (Client / Server) that relies on TCP session on a dedicated listening port. Users complain that after some delay of inactivity (let's say after 2 hours or even more) the application crashes (there is a common message "connection failure..."). In my mind, since the FW TCP timeout is set to 3600 seconds, if the application session is open for more than 1 hour without any activity it will close the connection.   Also I performed a Packet Capture on the FW and what I notice is that a TCP (FIN,ACK) is sent by the client to the server over 8000 seconds after the last packet in this particular session... And I see it at the receive stage as well as at the transmit stage. So am I a little bit confused. ... View more

Hello,   We have sometimes occurencies of network outage because of particular trafic that leads to high load on packet descriptor and packet buffer on our PaloAlto PA-5220.   We would like to snmp monitor the following values from the output of CLI command : show running resource-monitor   packet descriptor (on-chip) packet buffer   By using a monitoring solution like Nagios in order to provide graphes and put thresholds.   Any idea how to proceed ? I didn't find anything related to these items in the MIBs   Regards,   Laurent     ... View more

Hello,   We are running Panorama VM release 8.1.8 un Panorama mode. We have a 2 TB disk for logging and we would like to add a second 2 TB disk. The new virtual disk has been added to the VM, and after reboot is seen as sdb in Panorama (sdc is already working) :   > show system disk details Name   : sdb State  : Present Size   : 1887436 MB Status : Migration completed Reason : Admin disabled Name   : sdc State  : Present Size   : 1992294 MB Status : Available Reason : Admin enabled     I have already tried to enable this new partition but it still doesn't work :   > request system disk add sdb Executing this command will delete all data on the drive being added. Do you want to continue? (y or n) Operation: Addition of the sdb disk is already in progress. Run 'show system disk details' to see the status   Any idea to make this virtual disk enabled in Panorama ? Do you know if any messages are logged regarding this ?   Regards,   Laurent     ... View more