What is the root cause of the error: url-cloud-connection-failure - CLOUD CONNECTION: cloud not OK?
80194
Created On 07/28/20 16:56 PM - Last Modified 09/28/20 19:23 PM
Question
What is the root cause of the error "url-cloud-connection-failure - CLOUD CONNECTION: cloud not OK" when output of "show url-cloud status" shows connected'?
Getting following error in System log intermittently:
log_subtype event_id object severity description
url-filtering url-cloud-connection-failure medium CLOUD CONNECTION: cloud not OK
Output of "show url-cloud status" shows connected', but firewall log shows "CLOUD CONNECTION: cloud not OK", "url-cloud-connection-failure".
Environment
- PAN-OS Next Generation Firewall
Answer
The errors in the System logs related to ""CLOUD CONNECTION: cloud not OK." is caused by software issue
PAN-145305: Fixed an issue where inconsistent PAN-DB cloud connection caused the FW to negotiate the wrong version and decode the cloud responses with the wrong format
This is fixed to upgrade to version 9.0.10, 9.1.5, 9.2.0 and 10.0.0
Root cause: Inconsistent PAN-DB cloud connection caused the FW to negotiate the wrong version and decode the cloud responses with the wrong format
Additional Information
Other symptoms of the same issue:
Firewall is dropping traffic with URL category showing as not-resolved and end session as Threat. Licenses are installed and URL cloud status is also showing connected.