Global Protect issue with BGP routing configuration

Announcements

Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.

Reply
a.jones
L3 Networker

Global Protect issue with BGP routing configuration

Hi All,

 

I have configured Global Protect and I can successfully connect. My Palo Altos are configured to peer and route via BGP which is working without issue.

 

My problem is I cannot reach anything once I am connected. I need at access two address ranges. From the CLI of the Palo I can ping the gateways of the networks I need to reach via the GlobalProtect connections. I cannot ping when connected via global protect.

 

What I have noticed is that if I look at the more runtime stats in the virtual routers I can see the client pool subnet in the route table on interface Tunnel but not in the Forwarding table.

 

Any ideas?

 

Regards

 

Adrian

1 ACCEPTED SOLUTION
a.jones
L3 Networker

Thanks. After a weekend of looking I resolved this on the connecting router. It seems there was some diverse routing going on so the default gateway was pointing to another path. Once I removed this other path and tidied the config the expected default route displayed as expected and I had routing.

 

Nothing as good as taking over someones configuration it seems.

 

Thanks for the advice.

 

Regards

 

Adrian

View solution in original post

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!