Red Hat SATELLITE 5.0.0 RELEASE NOTES Bedienungsanleitung PDF herunterladen (Seite 17)

Palo Alto Networks PAN-OS 6.1 Release Notes • 17

PAN-OS 6.1 Release Information Known Issues

69458

When a loopback interface is used a GlobalProtect™ gateway, traffic for third-party IPSec

clients is not routed correctly. To prevent this issue, use a physical interface instead of a

loopback interface as the GlobalProtect gateway for third-party IPSec clients, or configure

the loopback interface used as the GlobalProtect gateway to be in the same zone as the

physical ingress interface for third-party IPSec traffic.

68588

This issue is now resolved.

See the list of PAN-OS

6.1.1 Addressed Issues

Firewalls that are managed by Panorama, but have not been restarted since being configured

as managed devices, might forward predefined reports to Panorama that show no data. You

can restart the management server for the firewall to ensure that predefined reports are

forwarded to Panorama and populated correctly.

68484

On Panorama, if you disable the Share Unused Address and Service Objects with Devices

setting and perform a device group commit, Panorama does not push all the objects that

the firewalls use in policies.

68330

When a WF-500 appliance is configured to generate content updates and a PAN-OS firewall

is retrieving incremental content updates from the appliance, the system log shows

unknown

version

for the update. For example, after an auto update, the system log shows: Wildfire

package upgraded from version <unknown version> to 38978-45470

. This is a

cosmetic issue only and does not prevent content updates from installing.

68153

On a firewall with numerous interfaces, the scheduled and unscheduled (on demand)

reports might display discrepancies in the byte counts for traffic logs and the repeat counts

for threat and data filtering logs.

67713

PAN-OS is allowing the administrator to downgrade the content version (Applications and

Threats) on the firewall to a version that is not supported by the current version of PAN-OS.

For example, if the firewall is running PAN-OS 6.1.0 and the minimum content version is

454, the administrator should not be able to downgrade to a version prior to 454.

67624

When using a web browser to view a WildFire Analysis Report from a firewall that is using

a WF-500 appliance for file/sample analysis, the report may not appear until the browser

downloads the WF-500 certificate. This issue occurs after upgrading a firewall to PAN-OS

6.1 and the WF-500 appliance to version 6.1.

Workaround: browse to the IP address or hostname of the WF-500 appliance. This will

temporarily download the certificate into the browser. For example, if the IP address of the

WF-500 is 10.3.4.99, open a browser and enter

https://10.3.4.99. You can then access

the report from the firewall by selecting

Monitor > WildFire Submissions, click the log

details icon and then click the

WildFire Analysis Report tab.

66976

In the WildFire submission logs, the email recipient address is not correctly mapped to a

username when the mapping is done using group mapping profiles pushed in a Panorama

template.

66887

The VM-Series firewall on KVM, for all supported Linux distributions, does not support

the Broadcom network adapters for PCI Passthrough functionality.

66879

The VM-Series firewall on KVM running on Ubuntu 12.04 LTS does not support the

PCI-Passthrough functionality.

66745

On managed mobile devices running iOS 8, unenrolling the device does not always remove

the VPN profile and the Mobile Security Manager profile.

Issue Identifier Issue Description

1 2 ... 12 13 14 15 16 17 18 19 20 21 22 ... 51 52

Kommentare zu diesen Handbüchern

Keine Kommentare

Red Hat SATELLITE 5.0.0 RELEASE NOTES Bedienungsanleitung Seite 17

Kommentare zu diesen Handbüchern

Verwandte Produkte und Handbücher für Software Red Hat SATELLITE 5.0.0 RELEASE NOTES