Operational Defect Database
BugZero updated this defect 4 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
Palo Alto Networks | PAN-172091
Fixed an issue where, when you configured a virtual system (vsys) as a User-ID hub, and a firewall that receives IP address-to-username mapping from the hub had a Security policy that includes a QoS policy rule, the firewall did not match the user to the QoS policy rule if the traffic attempted to access a vsys that was not the hub.
Last update date:
5/15/2024
Affected products:
Pan OS
Affected releases:
No affected releases provided.
Fixed releases:
10.1.3
Description:
The earliest recollection of this bug is traced back to PAN-OS 10.1.3 - May 15, 2024. This bug is fixed in PAN-OS versions 10.1.3. Fixed an issue where, when you configured a virtual system (vsys) as a User-ID hub, and a firewall that receives IP address-to-username mapping from the hub had a Security policy that includes a QoS policy rule, the firewall did not match the user to the QoS policy rule if the traffic attempted to access a vsys that was not the hub. For more information: https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-release-notes/pan-os-10-1-3-known-and-addressed-issues/pan-os-10-1-3-addressed-issues
