As i troubleshoot further i found that all the user are connect via ssl VPN but we have configure the IPSEC vpn.
Global protect Version is 5.2.5
@MickBall Based on past experience this is an "issue" in GP 5.2.5 (Which Joshan is using). I believe it is related to the improved error messages, so a lot of people are suddenly getting this warning thinking it's a new issue, but IPSec never likely worked in the first place.
Improved Connectivity Error Messages for the GlobalProtect App
(GlobalProtect app 5.2.5 and later releases) To enable a better user experience, the GlobalProtect app is now updated to display improved connectivity error messages. With this change, the GlobalProtect app can now provide friendly, informative connectivity error messages to help end users resolve issues on their endpoint themselves to reduce support calls to their Help Desk professional.
OK thanks for the information. i was not aware as just below that version..
i like the suggestion.. " to reduce support calls to their Help Desk professional".
this new popup will send our helpdesk phones into meltdown.... nice one Palo.
Do you have "Enable IPSec" selected as below.
if yes then your connection will first try IPSec on udp 4501. if at any time this fails then it will revert to SSL (443) and thats probably when you are getting the popup.
try pcap from the start of the connection,
@Joshan_Lakhani if it's now showing on the pcap that suggests it's failing before the firewall.
Check the local machine's firewall/other security software, and any other devices in between which could be preventing connectivity.
Also as a sanity check, have a look at the gateway settings and ensure IPSec mode is enabled.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!