Launching soon: The world's first vendor agnostic bug scrubLearn more & join waitlist
OPERATIONAL DEFECT DATABASE
...
...
- Connection events that should have SGT tags do not have tags as they are processed by Lina during the failover before snort updates the IP:SGT mappings. - This may result in "blocked" connections by the "default" rule.
- ISE without SXP topic enabled or configured integrated with the FMC - Utilizing SGT mappings for endpoints. - FTD in HA.
- none at this time.
SGTs maintain "pending" state: FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 Starting with minimum 0, id 0 and DstZone first with zones 2 -> 5, geo 0 -> 0, vlan 0, src sgt: 0, src sgt type: pending, dst sgt: 0, dst sgt type: unknown, svc 814, payload 0, client 2000000814, misc 0, user 9999997 FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 1, id 268446728 SrcZone FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 2, id 268446761 IPProto FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 3, id 268435537 SrcZone FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 4, id 268436480 dst_sgt:0 dst sgt type:0 FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 5, id 268436488 src network, GEO, FQDN FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 6, id 268436504 DstPort FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 7, id 268446758 DstPort FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 8, id 268436495 SrcZone FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 9, id 268444674 SrcZone FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 10, id 268436508 DstPort FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 11, id 268446722 DstPort FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 12, id 268445696 IPProto FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 no match rule order 13, id 268446725 DstPort FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 match rule order 14, id 268434432 action Block FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 MidRecovery data sent for rule id: 268434432, rule_action:4, rev id:632542564, rule_match flag:0x1 FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 Generating an SOF event FW1 SF-IMS[21137]: NGFWDbg 192.0.2.61 56874 -> 192.0.2.45 554 6 AS=0 ID=7 GR=1-1 deny action