All,
the new logs in V17 are showing some errors that I haven't seen before. I have users reporting very short periods of time with no internet access. The XG logs are showing an error at the corresponding timestamp that says:
2017-11-06 11:20:09Firewallmessageid="02002" log_type="Firewall" log_component="Appliance Access" log_subtype="Denied" status="Deny" con_duration="0" fw_rule_id="0" policy_type="0" user="cguzman@shg-inc.local" user_group="Open Group" web_policy_id="0" ips_policy_id="0" appfilter_policy_id="0" app_name="" app_risk="0" app_technology="" app_category="" in_interface="Port1" out_interface="" src_mac="00:50:b6:0e:e5:53" src_ip="10.10.8.129" src_country="" dst_ip="10.10.255.255" dst_country="" protocol="UDP" src_port="17500" dst_port="17500" packets_sent="0" packets_received="0" bytes_sent="0" bytes_received="0" src_trans_ip="" src_trans_port="0" dst_trans_ip="" dst_trans_port="0" src_zone_type="" src_zone="" dst_zone_type="" dst_zone="" con_direction="" con_id="" virt_con_id="" hb_status="No Heartbeat" message="" appresolvedby="Signature"
anyone have information on this? its a tough one to troubleshoot because internet access only seems to go down for a minute or so then comes right back up. traceroutes are stopping with the LAN interface of my XG as the last hop to respond.
any help would be appreciated.
This thread was automatically locked due to age.
