System logs report "The rule hit counter for <security polity> rule rolled-over at <number> hits " messages

System logs report "The rule hit counter for <security polity> rule rolled-over at <number> hits " messages

1953
Created On 01/13/23 09:39 AM - Last Modified 10/23/23 21:56 PM


Symptom


System logs (show log system) report messages similar to below 
info general general 0 The rule hit counter for <SECURITY_POLICY_NAME> rule rolled-over at 4294963863 hits 
with last hit at Sun Jan 1 01:23:45 2023 and first hit at Sun Mar 1 23:45:01 2020
Note: The number of the hit counter and the last/first hit date/time are various)

Environment


  • Any supported Firewall models
  • PAN-OS 8.1

Cause


  • The maximum number of hit counter is an unsigned integer of four bytes, 2^32 - 1 = 4294967295.
  • Hence the hit counter is rolled over to 0 before reaching the maximum value for the counter.

Resolution


This is the expected behavior and no actions are required.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000saQwCAI&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail