Resolved Issues
Learn about the issues fixed in this release for SRX Series devices.
For the most complete and latest information about known Junos OS defects, use the Juniper Networks online Junos Problem Report Search application.
- Application Layer Gateways (ALGs)
- Chassis Clustering
- Class of Service (CoS)
- Flow-Based and Packet-Based Processing
- Interfaces and Chassis
- Intrusion Detection and Prevention (IDP)
- J-Web
- Network Management and Monitoring
- Platform and Infrastructure
- Routing Policy and Firewall Filters
- Routing Protocols
- User Interface and Configuration
- VLAN Infrastructure
- VPNs
Application Layer Gateways (ALGs)
Chassis Clustering
-
GTP control packets might be incorrectly dropped/passed if there is more than one APN IMSI filter configured PR1673879
Class of Service (CoS)
-
"show interfaces queue interface" command output not correctly displaying bps values for throughput higher than 4.25Gbps PR1596172
Flow-Based and Packet-Based Processing
-
The hardware acceleration flag was not properly updated on RT_FLOW_SESSION_CLOSE logs. Additionally, the values for "Services-offload-sessions" for customers using SPC2's in their SRX5000-Series devices was incorrect. PR1629216
-
The gre-performance-acceleration might cause VPLS traffic drop PR1661409
-
vSRX not processing fragmented packets PR1668898
-
The flow sessions traversing the IOC2 card would time out early when Automated Express Path is enabled PR1688658
-
On SRX5K and SRX 4600 series devices, Automated Express Path (SOF) was incorrectly offloading short-lived flows. This consumed additional resources on the Network Processor (NP) which could lead to an early exhaustion of its memory, reducing overall device performance PR1692100
Interfaces and Chassis
-
22.2TOT :SecPDT:Unified L4/L7 Use Case Sky ATP: reth1 interface down and DCD cores observed on node1 during test on 22.2TOT image PR1657021
Intrusion Detection and Prevention (IDP)
-
21.2R3:SRX345:vSRX3.0:Device is hanging while checking the cli " show security idp attack attack-list policy combine-policy" PR1616782
J-Web
-
All the security policies on Junos SRX platforms can get deleted while trying to delete any particular policy via J-Web PR1681549
Network Management and Monitoring
-
High logging rate may cause 'eventd' to increase RE CPU utilization PR1661323
Platform and Infrastructure
-
SMS Channel Down alarm on primary node of HA pair after upgrade PR1629972
-
5K device SSL Session-Cache Inconsistencies from other platforms wrt tls1.3 resumption sessions PR1642174
-
21.3R2:NCP Secure Connect:Licensing: remote-access-juniper-std license not getting freed up while disconnect/reconnect after RG0 failover PR1642653
-
Packet loss might be seen on SRX4100 and SRX4200 devices from 20.2R2 PR1650112
-
The mspmand will crash when service-set is configured with syslog and SSL PR1657027
-
22.2TOT SecPDT: SRX4600: After ISSU upgrade completed, RG1 nodes priority remains in CS state and fab interfaces are down. PR1658148
-
Ssl-proxy: Cache miss counter increments twice instead of one PR1663678
-
SRX alarming "SMS control channel down" without SMS feature configured PR1666420
-
NG custom app identification fails on Junos SRX platforms PR1667221
-
22.1 DCB: IPv6 feature not working on 5K platform. PR1668473
-
Traffic loss seen due to SPC3's packets getting stuck PR1671649
-
The Forwarding plane crashes during HA failover PR1672378
-
Information about users groups is not displayed completely PR1673125
-
VPN tunnel will not be established in exclusive client scenario PR1674522
-
A FlowD crash might occur when AAMW (Advanced-Anti-Malware) encounters a memory leak PR1675722
-
Netbios traffic (IRB broadcast) is getting dropped post upgrade on the SRX platform PR1675853
-
Dial-on-demand mode on DL interface not working as expected PR1680405
-
The cluster fabric link will be down post reboot of node or power cycle PR1684756
-
unexpected default event-rate value for event mode logging PR1687244
Routing Policy and Firewall Filters
-
The utility 'monitor security packet-drop' now correctly reports policy-related drops for unified policy (includes the exact policy that dropped the packet) PR1576150
-
Junos OS: SRX Series: Cache poisoning vulnerability in BIND used by DNS Proxy (CVE-2021-25220) PR1656324
-
Security policy state may be invalid on SRX platforms PR1669386
-
The rpd process crashes whenever it is getting shut down with router reboot, rpd restart, RE switchover, software upgrade PR1670998
Routing Protocols
User Interface and Configuration
-
"gethostbyname: Host name lookup failure" is displayed during commit PR1673176
VLAN Infrastructure
VPNs
-
Traffic over IPSec tunnels may be dropped during ISSU PR1416334
-
Vmcore is seen on Junos platforms when data plane IPSec is configured PR1648249
-
Packets traversing through a policy-based VPN get dropped when PowerMode is enabled PR1663364
-
IPSec tunnels may flap on SRX platforms PR1665332
-
High Control Plane CPU utilisation while the kmd process is stuck after the core file PR1673391