This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

Nominated Discussion: Wrong IP Address But Tunnel is Up

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Nominated Discussion: Wrong IP Address But Tunnel is Up

kiwi
Community Team Member

on ‎04-12-2023 03:59 PM

No ratings

This Nominated Discussion Article is based on the post "Given Tunnel Interface IP is wrong but still tunnel is up" by @Sujanya  and responded to by @TomYoung . Read on to see the discussion and solution!

 

I am seeing the IP address given to the tunnel interface is wrong (for the tunnel with AWS), but tunnel still came up and working without any issue.

Can anybody suggest on this. Would the IP address which we will give to the tunnel interface not matter ?

 

The IP address on an IPsec tunnel is optional.  A standard site-to-site VPN does not require a tunnel IP address.  https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/vpns/set-up-site-to-site-vpn/set-up-an-ip...  (Step 3)

 

kiwi_0-1681303451745.png

 

Since the tunnel is point-to-point, all the NGFW has to do is route traffic down the tunnel and it will be received on the other side.  No routing to IP addresses is needed.

 

Labels:
Rate this article:
0 Likes Likes
  • 1518 Views
  • 0 comments
  • 0 Likes
Register or Sign-in
Labels
Article Dashboard
Version history
Last Updated:
‎04-12-2023 03:59 PM
Updated by:
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks