1) Confirm connectivity
admin@PA-500> ping host 10.2.232.1 PING 10.2.232.1 (10.2.232.1) 56(84) bytes of data. 64 bytes from 10.2.232.1: icmp_seq=1 ttl=255 time=0.488 ms 64 bytes from 10.2.232.1: icmp_seq=2 ttl=255 time=0.469 ms 64 bytes from 10.2.232.1: icmp_seq=3 ttl=255 time=0.468 ms 64 bytes from 10.2.232.1: icmp_seq=4 ttl=255 time=0.489 ms 64 bytes from 10.2.232.1: icmp_seq=5 ttl=255 time=0.445 ms 64 bytes from 10.2.232.1: icmp_seq=6 ttl=255 time=0.435 ms 64 bytes from 10.2.232.1: icmp_seq=7 ttl=255 time=0.442 ms ^C --- 10.2.232.1 ping statistics --- 7 packets transmitted, 7 received, 0% packet loss, time 5997ms rtt min/avg/max/mdev = 0.435/0.462/0.489/0.026 ms
2) Try pinging the update server
admin@PA-500> ping host updates.paloaltonetworks.com PING updates.paloaltonetworks.com (199.167.52.13) 56(84) bytes of data. ^C --- updates.paloaltonetworks.com ping statistics --- 6 packets transmitted, 0 received, 100% packet loss, time 5013ms
3) Confirm connectivity
admin@PA-500> ping host ya.ru PING ya.ru (77.88.21.3) 56(84) bytes of data. 64 bytes from www.yandex.ru (77.88.21.3): icmp_seq=1 ttl=58 time=1.80 ms 64 bytes from www.yandex.ru (77.88.21.3): icmp_seq=2 ttl=58 time=1.24 ms 64 bytes from www.yandex.ru (77.88.21.3): icmp_seq=3 ttl=58 time=1.48 ms 64 bytes from www.yandex.ru (77.88.21.3): icmp_seq=4 ttl=58 time^C --- ya.ru ping statistics --- 4 packets transmitted, 4 received, 0% packet loss, time 3038ms rtt min/avg/max/mdev = 1.249/1.487/1.802/0.204 ms
4) What the fuck is happening?
admin@PA-500> ping host updates.paloaltonetworks.com PING updates.paloaltonetworks.com (199.167.52.13) 56(84) bytes of data. ^C --- updates.paloaltonetworks.com ping statistics --- 15 packets transmitted, 0 received, 100% packet loss, time 14016ms admin@PA-500> traceroute host updates.paloaltonetworks.com traceroute to updates.paloaltonetworks.com (199.167.52.13), 30 hops max, 40 byte packets 1 (10.2.232.1) 1.091 ms 1.137 ms 1.247 ms 2 (81.23.6.65) 4.064 ms 4.154 ms 4.169 ms 3 (83.220.63.5) 2.813 ms 2.823 ms 2.900 ms 4 (62.140.239.81) 1.861 ms 1.868 ms 1.870 ms 5 (62.140.245.49) 2.544 ms 2.615 ms 2.960 ms 6 (62.140.245.81) 56.934 ms 56.698 ms 56.605 ms 7 (213.242.110.217) 50.186 ms 50.005 ms 50.183 ms 8 (4.68.70.10) 58.485 ms 63.608 ms 63.486 ms 9 (67.17.74.41) 63.464 ms 63.457 ms 63.525 ms 10 (67.17.105.2) 191.497 ms 191.114 ms 191.204 ms 11 (64.210.28.142) 182.979 ms 181.979 ms 181.966 ms 12 (66.151.144.29) 180.588 ms 180.550 ms 180.499 ms 13 (66.151.157.250) 182.051 ms 181.039 ms 180.905 ms 14 * * * 15 * * * 16 * * * 17 * * * 18 * * * 19 * * * 20 * * * 21 * * * 22 * * * 23 * * * 24 * * * 25 * * * 26 * * * 27 * * * 28 * * * 29 * * * 30 * * * admin@PA-500> telnet port 443 host updates.paloaltonetworks.com Trying 199.167.52.13... Connected to updates.paloaltonetworks.com. Escape character is '^]'. ^^] ^C^H ^^] Connection closed by foreign host. admin@PA-500> request anti-virus upgrade download latest
Server error : No update information available
I have network connectivity but the servers are down!!1 How on earth are the update servers for a firewall down ???
Palo Alto Team….do sth!
====================EDITED UPDATE============
So after all the ranting, I visited the Device->Software webpage, clicked on Check Now and a lis of the sotware updates came up 🙂
But the IP address was still unreachable. So guys, if you ever get the connectivity error….first try checking for the updates instead of wasting time ranting 🙂
CyberSecFaith 