Operational Defect Database
BugZero updated this defect 4 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
Palo Alto Networks | PAN-157215
Fixed an issue that occurred when two FQDNs were resolved to the same IP address and were configured as the same src/dst of the same rule. If one FQDN was later resolved to a different IP address, the IP address resolved for the second FQDN was also changed, which caused traffic with the original IP address to hit the incorrect rule.
Last update date:
5/15/2024
Affected products:
Pan OS
Affected releases:
No affected releases provided.
Fixed releases:
10.2.3
10.1.7
Description:
The earliest recollection of this bug is traced back to PAN-OS 10.1.7 - May 15, 2024. This bug is fixed in PAN-OS versions 10.2.3, 10.1.7. Fixed an issue that occurred when two FQDNs were resolved to the same IP address and were configured as the same src/dst of the same rule. If one FQDN was later resolved to a different IP address, the IP address resolved for the second FQDN was also changed, which caused traffic with the original IP address to hit the incorrect rule. For more information: https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-release-notes/pan-os-10-1-7-known-and-addressed-issues/pan-os-10-1-7-addressed-issues https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-release-notes/pan-os-10-2-3-known-and-addressed-issues/pan-os-10-2-3-addressed-issues
