Hello guys,
In the Dashboard, Mismatch is observed in App Version and Threat Version. The MGMT interface does not have an Internet output and external interface must be used on the service routes so it can update the Dynamic Updates. So in this scenario, first download the Dynamic Updates in the active firewall and then send it to the passive firewall through the Sync-to-Peer.
The next KB was followed and one hour of weight is left in the passive firewall, but the problem continues.
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClrnCAC
An attempt was made to download and install the version of the application and threat on the passive Firewall manually, but I'm not successful because the following error appears:
"Failed to check content upgrade info due to generic communication error. Please check network connectivity and try again"
Even when I try to import the version of the apps and threat in the passive firewall that download from the Portal Support PA, it appears that there is already an existing file and it does not give me import it.
Any of you had some similar experience?
Any suggestion is good.
Regards.
Thanks for sharing!
Hello Guys,
I share what you do to solve this problem.
The costumer did the following in the passive fw:
> From the CLI, run the following command to eliminate the old content cache:
#delete content cache old-content
> Apply the restart of the Management Server:
#>debug software restart process management-server
> After restart, import the corresponding package from the support portal in the passive firewall and click on Install.
> In case you do not give an option to "install", contact Install From File -> Package Type "Apps and Threats" and select the corresponding version.
You may need to install app-only content package first. Dis you check if the passive device has all the required licences installed to be allowed to update content?