Red Hat SATELLITE 5.0.0 RELEASE NOTES Manual de usuario descargar pdf (Pagina 47)

Palo Alto Networks PAN-OS 6.1 Release Notes • 47

PAN-OS 6.1.0 Addressed Issues

64310

When performing an application dump (to capture packets for a particular application)

for a specific security rule, an application dump was performed for all security rules.

This issue has been fixed so that specifying a security rule for an application dump only

performs an application dump for traffic matching that rule.

64279

An enhancement has been made to lower the configurable amount of time at which

the firewall refreshes FQDN object entries. The previous lowest amount of time you

could configure for FQDN refreshes to occur was every 1800 seconds. You can now

use the fqdn-refresh-time command to configure FQDN refreshes to occur every 600

seconds – 14,399 seconds.

64229

A QoS policy was not being enforced on the firewall and all traffic was being classified

and treated as class 4 traffic (the default QoS class). This issue has been resolved so

that a configured QoS policy is correctly enforced on traffic.

64223

Fixed an issue where FQDN objects that were added to a dynamic address group were

not listed after issuing the command

request system fqdn show, with the command

displaying a message that no FQDN object is used in the policies.

64040

Addressed an issue where a log collector’s disk usage exceeded the total log storage

quota configured on Panorama (

Templates > Panorama > Collector Groups > Log

Storage Settings

63857

In certain circumstances, an application could have been implicitly allowed through the

firewall due to a configured rule that allowed only a dependent application. The issue

has been fixed so that an application that might be implicitly allowed is properly

blocked if needed.

63790

A firewall that did not have a GlobalProtect license and was configured with one portal

and one gateway was displaying a commit warning when the cutoff time for a

GlobalProtect gateway was set to any other value than the default value of 5 seconds

(the cutoff time is how long a GlobalProtect agent will wait for the GlobalProtect

gateways to respond in determining the best gateway to connect to). This issue has

been fixed so that a commit warning is not displayed when the cutoff time for a

GlobalProtect gateway is set to a value other than the default.

63641

When an LDAP authentication profile was configured with the Password Expiry

Warning

set to the default of 7 days, a warning message was not shown 7 days before

the password was set to expire. This issue has been fixed so that users are correctly

warned before their passwords expire, depending on the number of days entered in the

Password Expiry Warning field.

63349

Fixed an issue where Dynamic Host Configuration Protocol (DHCP) leases were being

reset when the firewall was restarted.

63218

The web interface allowed for a security policy to be created with the Service defined

both as application-default and a specific service. This has been fixed so that you can

either select the application-default option so that selected applications are either

allowed or denied on their default ports or select a specific service or service group to

limit to specific TCP/UDP port numbers (you cannot enable both of these options

within a single security policy).

Issue Identifier Issue Description

1 2 ... 42 43 44 45 46 47 48 49 50 51 52

Comentarios a estos manuales

Sin comentarios

Red Hat SATELLITE 5.0.0 RELEASE NOTES Manual de usuario Pagina 47

Comentarios a estos manuales

Relacionado con productos y manuales para Software Red Hat SATELLITE 5.0.0 RELEASE NOTES