Not-applicable in Traffic Logs
Created On 09/19/19 21:55 PM - Last Updated 09/19/19 22:02 PM
Security Policy Policy Hardware PAN-OSSymptom
The application column shows not-applicable if the traffic matches an allowing/blocking security rule via a service filter rather than an application filter.
The firewall traffic is matched from left to right and top to bottom in the security rules. If traffic hits a security rule that's set to "deny," based on any parameter before the application, the traffic log shows the application as not-applicable. This occurs because the traffic was dropped or denied before the application match could be performed.