Default Gateway from the Palo Alto Firewall is not reachable

cancel
Showing results for 
Search instead for 
Did you mean: 

Default Gateway from the Palo Alto Firewall is not reachable

Not applicable

Hello,

I have configured inside, outside and DMZ on the Palo Alto firewall. The outside interface is configured for Global Protect.

The default gateway of Palo Alto firewall is not reachable. But when we connect to that cable to ASA firewall we are able to ping gateway.

Please help us to troubleshooting the issue.

Regards,

Parvez

11 REPLIES 11

Right, what panos said is true, that's why I'm asking for the source parameter to be added to your ping command ParvezAhmad

L4 Transporter

What egearhart says is true. If you "ping host www.yahoo.com" ,  the default interface chosen is the management interface. If your WAN interface has an IP of 64.64.64.64, use this syntax, ping source 64.64.64.64 host <IP_ADDR_Nexthop_Rtr>. Then  check the arp cache on the ethernet port that corresponds to 64.64.64.64. If you do not see an entry for your ISP next hop then they have probably done a static entry for your IP and MAC in the switch. I have no idea why they do this but it is fairly common in the USA.

SKrall

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!