This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Paul_Mainhardt1
Participant
‎2020-01-19 03:27 PM

External DNS Stops working

We are having an issue where External DNS stops working intermittently until we do a cluster fail over.

 fw ctl zdebug drop  shows lots of the following drop messages:

@;129816940;[cpu_3];[fw4_0];[X.X.X.X:36028 -> 203.94.129.130:53] [ERROR]: appi_clobs_observer_remove_context_dependent: application id (60341234) has unknown context id and won't be free;

@;134917386;[cpu_3];[fw4_0];[X.X.X.X:49252 -> 1.1.1.1:53] [ERROR]: appi_clobs_observer_remove_context_dependent: application id (60341234) has unknown context id and won't be free;

The strange thing is that i am still seeing these same messages even in a working state, so i am not convinced that this is the cause of the issue.

0 Kudos
3 Replies
Chris_Atkinson
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2020-01-19 03:37 PM

Hi 

Could you please share some version and hotfix details, are they later than those outlined in sk163793 for example?

 

Thanks,

Chris

 

CCSM R77/R80/ELITE
0 Kudos
Paul_Mainhardt1
Participant
‎2020-01-19 03:47 PM

We are running R80.30 with Take 107 - We had to downgrade to 107 (as per CP Support recommendations to resolve an OSPF issue).

 

[Expert@ExternalFW01:0]# cpinfo -y all

This is Check Point CPinfo Build 914000202 for GAIA
[IDA]
No hotfixes..

[MGMT]
HOTFIX_R80_30_JUMBO_HF_MAIN Take: 107

[CPFC]
HOTFIX_R80_30_JUMBO_HF_MAIN Take: 107

[FW1]
HOTFIX_R80_30_JUMBO_HF_MAIN Take: 107

FW1 build number:
This is Check Point's software version R80.30 - Build 075
kernel: R80.30 - Build 076

[SecurePlatform]
HOTFIX_R80_30_JUMBO_HF_MAIN Take: 107

[CPinfo]
No hotfixes..

[DIAG]
No hotfixes..

[PPACK]
HOTFIX_R80_30_JUMBO_HF_MAIN Take: 107

[CVPN]
No hotfixes..

[CPUpdates]
BUNDLE_R80_30_JUMBO_HF_MAIN Take: 107
BUNDLE_INFRA_AUTOUPDATE Take: 19
BUNDLE_DEP_INSTALLER_AUTOUPDATE Take: 13
BUNDLE_CPINFO Take: 50

[AutoUpdater]
No hotfixes..

[CPDepInst]
No hotfixes..

0 Kudos
Chris_Atkinson
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2020-01-19 07:34 PM
In response to Paul_Mainhardt1

 

In that case I would definitely review this further with TAC so all the dependencies are properly understood.

 

(Side note if per-chance you have "domain" objects used within your policy please ensure they're set for FQDN mode where ever possible.)

CCSM R77/R80/ELITE
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events