08-14-2017 12:49 PM
Hi guys,
Strange issue here which I'm hopeing to get resolved. I was SSH'ed into the our PA VM-100 today and happened to run the command >ping host 8.8.8.8. This resulted in 100% (DUP!) replies on the ICMP replies. However, when I specify the source and host I dont get this issue.
Any ideas why this could be happening?
Thanks
08-14-2017 12:53 PM - edited 08-14-2017 12:59 PM
ping host 8.8.8.8 - ping requests are sent from mgmt interface on mgmt plane
ping source x.x.x.x host 8.8.8.8 - ping requests are sent from interface on dataplane (x.x.x.x is L3 interface IP)
What exactly happened? Duplicates?
You should review your switching infrastructure.
08-15-2017 08:37 AM - edited 08-15-2017 10:07 AM
Interesting,
Something (ping request or reply) somewhere gets duplicated. What is happening if you are pinging cisco.com website (hehe bad example)? Do you get the same result? Run a PCAP from mgmt interface on Palo (at least will give you some visibility) to see if you are getting 2 responses back etc.
08-16-2017 12:42 PM
We had this happen a while back on one of our firewalls while we were setting it up. If I remember correctly we didn't have the gateway on the management interface configured (or maybe configured properly).
Type:
> configure
# show deviceconfig system
You should see this line in the configuration:
default-gateway 10.10.10.10; (example IP)
Brian
08-16-2017 12:46 PM
I am not sure if you can send any traffic outside your local network without or with an incorrectly configured gateway.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
