global protect gateway ipsec connection and ssl connection

Reply
Highlighted
Cyber Elite

global protect gateway ipsec connection and ssl connection

 

I have configured GP external gateway and it is working fine.

 

connection type is always SSL  even though ipsec is checked in the config.

 

does GP supports ipsec connection?

 

or is GP connection only supports ssl?

 

 

MP

Accepted Solutions
Highlighted
L2 Linker

Are you allowing IPsec on the security policiy ?

View solution in original post

Highlighted
L7 Applicator

GP will try IPSec first (UDP 4501) if it cannot connect via IPSec it will try SSL TCP 443.

 

so you may need to allow UDP 4501 outgoing to use IPSec.

View solution in original post


All Replies
Highlighted
L2 Linker

Are you allowing IPsec on the security policiy ?

View solution in original post

Highlighted
L7 Applicator

GP will try IPSec first (UDP 4501) if it cannot connect via IPSec it will try SSL TCP 443.

 

so you may need to allow UDP 4501 outgoing to use IPSec.

View solution in original post

Highlighted
Cyber Elite

issue was my firewall in between was dropping ipsec traffic.

alowed the ipsec in that firewall

MP
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!