Upgrade to 9.3.2 build.

---

Problem Cause

1.) Packet arrives from Internet Service and Firewall is exercised in frame processing. During the firewall processing, it lookup the route for the packet, create/update the flows, and set a flag in the packet descriptor that Firewall is done.
2.) Egress II Processing is performed.
3.) Packet is sent to IP forwarder where FW processing is done a second time. However, since the FW flag is set in the descriptor, it just lookup the route and return. During this second lookup, it match a conduit route instead because the Internet service is now dead. Unfortunately, it skipped all flow processing so the Ingress processing will still try to send the packet to the Internet service. The bad lwl_id comes from the initial ingress conduit processing.

To prevent the issue, we can “Ignore WAN Link Status” on the Internet Service. However, this will not avoid all instances of the issue. It recommend to “Ignore WAN Link Status” on any Intranet service in the network as well.