GlobalProtect VPN disconnects every 30s, no internet access while connected

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

GlobalProtect VPN disconnects every 30s, no internet access while connected

L1 Bithead

Hey, thanks in advance for any and all help. I'm working from home (as many of us are at the moment) and I have an issue every day without fail when I connect to the GlobalProtect VPN. It "connects" successfully, but then disconnects every 30 seconds, then spends another 1-2 seconds reconnecting, before successfully "reconnecting" again. During this entire time the VPN is "connected", I don't have any internet access whatsoever. I have been fixing this every day by one of 3 solutions: resetting my home Wi-Fi router, uninstalling and reinstalling GlobalProtect, or restarting my laptop. However, none of these solutions are working today anymore. 

The VPN works perfectly when I use my mobile hotspot on my phone, and it works perfectly in the office. This made me think it was something with my home Wi-Fi provider (BT) blocking the VPN, but I talked to their support team and they assured me this was not the case. Nobody else in my company seems to be having these issues. I have attacked the PanGP service and agent logs, but I must point out that I really am a newbie at all this, and a lot of this network-talk will fly over my head. Nonetheless, this is an incredibly frustrating issue and I haven't managed to find anyone reporting the same thing online.

PanGP Service logs:

thread: run cmd: cmd /C ipconfig /flushdns > "15"
(T19452) 04/01/20 13:55:30:982 Warn ( 350): Wait for PanGpHipMp.exe timed out for checking missing patches.
(T19452) 04/01/20 13:55:30:982 Debug( 388): CheckHipMissingPatchInOtherProcess(): exits.
(T19452) 04/01/20 13:55:30:982 Debug( 475): Hip missing patch checking duration is 120
(T19452) 04/01/20 13:55:30:982 Debug( 495): pan_read_text_from_file(): File does not exist. File: C:\Program Files\Palo Alto Networks\GlobalProtect\PanGpMPR.dat
(T8656) 04/01/20 13:56:18:441 Info ( 921): --Too many outstanding keepalive and no response from GP gateway, disconnect tunnel
(T8656) 04/01/20 13:56:18:441 Info ( 494): VPN timeout due to keepalive, get out of ProcMonitor
(T8656) 04/01/20 13:56:18:441 Debug( 502): Tunnel downtime is 50 seconds
(T8656) 04/01/20 13:56:18:441 Debug(4772): Show Gateway prodvpn.smashfly.com: Checking network availability and restoring VPN connection when network is available.
(T8656) 04/01/20 13:56:18:441 Debug(5155): --Set state to Restoring VPN Connection
(T3972) 04/01/20 13:56:18:442 Debug(2222): Setting debug level to 5
(T8656) 04/01/20 13:56:18:444 Debug( 526): Stop ProcDrv before disconnect
(T13624) 04/01/20 13:56:18:444 Info ( 740): ProDrv: VPN disconnect event, get out of ProcDrv
(T13624) 04/01/20 13:56:18:444 Info ( 757): ProcDrv thread dies
(T8656) 04/01/20 13:56:18:444 Info ( 714): ProcDrv quit
(T8656) 04/01/20 13:56:18:445 Debug( 226): Disconnect udp socket 
(T8656) 04/01/20 13:56:18:445 Debug( 382): unset network
(T8656) 04/01/20 13:56:18:445 Debug(2392): UnsetRoutes(): RestoreDefaultRoutes.
(T8656) 04/01/20 13:56:18:445 Debug(2398): Unset 5 routes
(T8656) 04/01/20 13:56:18:445 Debug(2418): UnsetRoutes: DeleteIpForwardEntry[0] (0.0.0.0)
(T8656) 04/01/20 13:56:18:445 Debug(2418): UnsetRoutes: DeleteIpForwardEntry[1] (10.110.0.0)
(T8656) 04/01/20 13:56:18:445 Debug(2418): UnsetRoutes: DeleteIpForwardEntry[2] (10.110.64.0)
(T8656) 04/01/20 13:56:18:445 Debug(2418): UnsetRoutes: DeleteIpForwardEntry[3] (10.110.8.11)
(T8656) 04/01/20 13:56:18:445 Debug(2418): UnsetRoutes: DeleteIpForwardEntry[4] (10.110.8.12)
(T8656) 04/01/20 13:56:18:445 Debug(5268): UnsetGatewayRoutes: DeleteIpForwardEntry(20.45.0.188)
(T8656) 04/01/20 13:56:18:445 Info (3846): RemoveGatewayInRouteTable(vnicIdx=35)
(T8656) 04/01/20 13:56:18:446 Info (3894): delete 1 ip forward entry: 10.254.0.83
(T8656) 04/01/20 13:56:18:446 Debug(2357): UnsetRoutesV6: No route installed before
(T8656) 04/01/20 13:56:18:446 Debug(1291): Disconnect virtual interface
(T8352) 04/01/20 13:56:18:477 Debug(4723): NetworkConnectionMonitorThread: route change detected. Wait for 3 seconds.
(T8352) 04/01/20 13:56:18:477 Debug(3919): No need to check gateway route since no tunnel.
(T8656) 04/01/20 13:56:18:529 Debug( 768): restorednssuffix: dnsSuffix:localdomain
(T3972) 04/01/20 13:56:18:641 Debug(2222): Setting debug level to 5
(T8656) 04/01/20 13:56:18:672 Debug(4806): DLSA, savedMetric1Routes not present, do not need to restore
(T8656) 04/01/20 13:56:18:672 Debug(4201): Proxy is not disabled before, no need to restore
(T8656) 04/01/20 13:56:18:692 Debug( 759): PreviousDNSInfo doesn't exist, no need to restore
(T8656) 04/01/20 13:56:18:699 Debug(1685): UnsetDNSSuffixSearchOrder returns 0
(T8656) 04/01/20 13:56:18:782 Debug(1690): UnsetDNSServerSearchOrder returns 84
(T8656) 04/01/20 13:56:18:846 Debug(1692): UnsetWINSServer returns 84
(T8656) 04/01/20 13:56:18:847 Debug(8329): SetVpnStatus called with new status=0, Previous Status=1
(T8656) 04/01/20 13:56:18:847 Debug(4055): UpdatePrelogonStateForSSO() - User-logon tunnel state = Disconnected
(T8656) 04/01/20 13:56:18:852 Debug( 463): Network is reachable
(T8656) 04/01/20 13:56:18:852 Debug( 162): Trying to do ipsec connection to 20.45.0.188[4501]
(T8656) 04/01/20 13:56:18:857 Debug( 463): Network is reachable
(T8656) 04/01/20 13:56:18:858 Info ( 174): Connected to: 20.45.0.188[4501], Sending keep alive to ipsec socket...
(T8656) 04/01/20 13:56:18:984 Info ( 212): Connected ipsec to 20.45.0.188(4501)
(T8656) 04/01/20 13:56:18:984 Info ( 316): tunnel to 20.45.0.188 connected
(T8656) 04/01/20 13:56:19:219 Debug( 335): PsvRegister done
(T8656) 04/01/20 13:56:19:219 Debug( 605): Retry start succeeded
(T8656) 04/01/20 13:56:19:219 Debug(3779): In SetGatewayRoute: The original route table:
(T8656) 04/01/20 13:56:19:219 Debug( 138): Destination      NetMask          Gateway          Inf Metric
(T8656) 04/01/20 13:56:19:219 Debug( 153): 0.0.0.0          0.0.0.0          192.168.1.254    3   50    
(T8656) 04/01/20 13:56:19:219 Debug( 153): 127.0.0.0        255.0.0.0        127.0.0.1        1   331   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 127.0.0.1        255.255.255.255  127.0.0.1        1   331   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 127.255.255.255  255.255.255.255  127.0.0.1        1   331   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 172.17.111.64    255.255.255.240  172.17.111.65    74  5256  
(T8656) 04/01/20 13:56:19:219 Debug( 153): 172.17.111.65    255.255.255.255  172.17.111.65    74  5256  
(T8656) 04/01/20 13:56:19:219 Debug( 153): 172.17.111.79    255.255.255.255  172.17.111.65    74  5256  
(T8656) 04/01/20 13:56:19:219 Debug( 153): 192.168.1.0      255.255.255.0    192.168.1.106    3   306   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 192.168.1.106    255.255.255.255  192.168.1.106    3   306   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 192.168.1.255    255.255.255.255  192.168.1.106    3   306   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 192.168.28.0     255.255.255.0    192.168.28.1     6   291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 192.168.28.1     255.255.255.255  192.168.28.1     6   291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 192.168.28.255   255.255.255.255  192.168.28.1     6   291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 192.168.116.0    255.255.255.0    192.168.116.1    25  291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 192.168.116.1    255.255.255.255  192.168.116.1    25  291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 192.168.116.255  255.255.255.255  192.168.116.1    25  291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 224.0.0.0        240.0.0.0        127.0.0.1        1   331   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 224.0.0.0        240.0.0.0        192.168.28.1     6   291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 224.0.0.0        240.0.0.0        192.168.116.1    25  291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 224.0.0.0        240.0.0.0        192.168.1.106    3   306   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 224.0.0.0        240.0.0.0        172.17.111.65    74  5256  
(T8656) 04/01/20 13:56:19:219 Debug( 153): 255.255.255.255  255.255.255.255  127.0.0.1        1   331   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 255.255.255.255  255.255.255.255  192.168.28.1     6   291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 255.255.255.255  255.255.255.255  192.168.116.1    25  291   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 255.255.255.255  255.255.255.255  192.168.1.106    3   306   
(T8656) 04/01/20 13:56:19:219 Debug( 153): 255.255.255.255  255.255.255.255  172.17.111.65    74  5256  
(T8656) 04/01/20 13:56:19:219 Debug(3789): SetGatewayRoute: GetBestRoute() returns Dest:0.0.0.0 Mask:0.0.0.0 if_index=3 metric1=50
(T8656) 04/01/20 13:56:19:220 Debug(3810): Created gateway route (20.45.0.188) succeeds
(T8656) 04/01/20 13:56:19:234 Debug(1565): Get original UseDomainNameDevolution value 1
(T8656) 04/01/20 13:56:19:234 Debug(1590): Get original DNS SearchList value localdomain
(T8656) 04/01/20 13:56:19:326 Debug(1114): Save original dns suffix to registry
(T3972) 04/01/20 13:56:19:326 Debug(2222): Setting debug level to 5
(T8656) 04/01/20 13:56:19:329 Debug( 978): flush registry successfully
(T8656) 04/01/20 13:56:19:352 Debug(2699): Virtual adapter friendly name is: Ethernet 6
(T8656) 04/01/20 13:56:19:420 Debug(  66): netsh script: interface ip set address 35 static 10.254.0.83 255.255.255.255
(T8656) 04/01/20 13:56:19:420 Debug(  66): netsh script: interface ip set dns 35 static 10.110.8.11 validate=no
(T8656) 04/01/20 13:56:19:420 Debug(  66): netsh script: interface ip add dns 35  10.110.8.12 validate=no
(T8656) 04/01/20 13:56:19:421 Debug(3049): run netsh script: C:\WINDOWS\system32\cmd.exe /C C:\WINDOWS\system32\netsh.exe -f 18 > "17"
(T8656) 04/01/20 13:56:19:745 Debug(3404): Set virtual interface metric: C:\WINDOWS\system32\cmd.exe /C C:\WINDOWS\system32\netsh.exe interface ipv4 set interface 35 metric=0 > "19"
(T8656) 04/01/20 13:56:19:846 Debug(2096): SetExcludeRoutesV6: there is no route to set 
(T8656) 04/01/20 13:56:19:846 Debug(2021): SetExcludeRoutes: there is no route to set 
(T8656) 04/01/20 13:56:19:846 Debug(1871): SetRoutes: exclusiveDefaultRoute 0, PPP adapter count 0.
(T8656) 04/01/20 13:56:19:847 Debug(3143): Wait for virtual interface IP route entry 10.254.0.83
(T8352) 04/01/20 13:56:21:479 Debug(4783): NetworkConnectionMonitorThread: m_state = 0, m_bOnDemand=1, m_bAgentEnabled=1, m_bJustResumed is 0,
 m_bHibernate is 0, m_bAgentEnabled is 1, m_bDisconnect is 0, IsConnected() is 1, IsVPNInRetry() is 0.
(T8656) 04/01/20 13:56:22:803 Debug(3155): Found virtual interface IP route entry.
(T8656) 04/01/20 13:56:22:832 Debug(1924): Set access route: ForwardDest = 0.0.0.0, metric 1.
(T8656) 04/01/20 13:56:22:856 Debug(1924): Set access route: ForwardDest = 10.110.0.0, metric 1.
(T8656) 04/01/20 13:56:22:879 Debug(1924): Set access route: ForwardDest = 10.110.64.0, metric 1.
(T8656) 04/01/20 13:56:22:898 Debug(1924): Set access route: ForwardDest = 10.110.8.11, metric 1.
(T8656) 04/01/20 13:56:22:930 Debug(1924): Set access route: ForwardDest = 10.110.8.12, metric 1.
(T8656) 04/01/20 13:56:22:930 Debug(4280): DLSAV6, CPanNetSetup::RemoveDLSARouteV6, cfg=000001EDCC5A2D50
(T8656) 04/01/20 13:56:22:944 Debug(4305): DLSAV6, our IF index=35, number of defined route is 0, number of routes is 32
(T8656) 04/01/20 13:56:22:944 Debug(4361): DLSA, RemoveDLSARoute, cfg=000001EDCC5A2D50
(T8656) 04/01/20 13:56:22:962 Debug(4382): DLSA, our IF index=35
(T8656) 04/01/20 13:56:22:962 Debug(4396): DLSA, found our default route
(T8656) 04/01/20 13:56:22:962 Debug(  25): create thread 0x7a0 with thread ID 3984
(T8656) 04/01/20 13:56:22:962 Debug(1983): Start FlushDNSCache thread 0x7a0
(T8656) 04/01/20 13:56:22:962 Debug( 367): Save route table snapshot...
(T8352) 04/01/20 13:56:22:962 Debug(3239): No need to check virtual IP route before SetupNetwork finished
(T8352) 04/01/20 13:56:22:962 Debug(3965): No change for gateway route
(T8352) 04/01/20 13:56:22:962 Debug(4799): NetworkConnectionMonitorThread: Detected route change, but skip network discovery.
(T8656) 04/01/20 13:56:22:963 Debug( 628): Retry finished SetupNetwork
(T8656) 04/01/20 13:56:22:963 Debug(  25): create thread 0x7a0 with thread ID 20984
(T8656) 04/01/20 13:56:22:963 Debug(5155): --Set state to Connected
(T20984) 04/01/20 13:56:22:963 Debug( 392): VpnProcDrv thread starts
(T8656) 04/01/20 13:56:22:964 Debug(8329): SetVpnStatus called with new status=1, Previous Status=0
(T8656) 04/01/20 13:56:22:964 Debug(4055): UpdatePrelogonStateForSSO() - User-logon tunnel state = Connected
(T3972) 04/01/20 13:56:22:965 Debug(2222): Setting debug level to 5
(T3984) 04/01/20 13:56:24:964 Debug(2001): FlushDNSCache thread: run cmd: cmd /C ipconfig /flushdns > "20"

 

PanGP Agent logs (I have replaced any sensitive information like the portal name and my email):

PanBaseConfigMgr::AddPortal - portal VPNPORTALNAME.com is already in list.
(T15272) 04/01/20 13:56:23:045 Debug( 547): CPanBaseConfigMgr::AddPortal - portal VPNPORTALNAME.com is already in list.
(T15272) 04/01/20 13:56:23:045 Debug(2451): receive resize message from 1, and new height is 291.
(T15272) 04/01/20 13:56:23:046 Debug(2451): receive resize message from 1, and new height is 254.
(T15272) 04/01/20 13:56:23:046 Debug(2451): receive resize message from 1, and new height is 254.
(T15272) 04/01/20 13:57:13:989 Debug(  93): Received data from Pan Service
(T15272) 04/01/20 13:57:13:990 Debug( 169): username field is not empty. not override the username.
(T15272) 04/01/20 13:57:13:990 Debug( 190): CPanBaseReceiver::HandleStatus - found discover-ready tag. value = y.
(T15272) 04/01/20 13:57:13:990 Debug( 267): message type from the service = s 
<?xml version="1.0" encoding="UTF-8"?>
<response>
	<type>status</type>
	<status>Restoring VPN Connection</status>
	<protocol>IPSec</protocol>
	<portal-config-version>4100</portal-config-version>
	<error>Gateway VPNPORTALNAME.com: Checking network availability and restoring VPN connection when network is available.</error>
	<uptime>218</uptime>
	<byte-received>323</byte-received>
	<byte-sent>407376</byte-sent>
	<packet-received>4</packet-received>
	<packet-sent>2631</packet-sent>
	<incorrect-packet-received>0</incorrect-packet-received>
	<incorrect-packet-sent>0</incorrect-packet-sent>
	<server-ip>20.45.0.188</server-ip>
	<local-ip>10.254.0.83</local-ip>
	<local-ipv6/>
	<connect-mode>0</connect-mode>
	<product-version>4.1.8-2</product-version>
	<product-code>&quot;{4CBE95A5-2102-46AD-8241-CE468A668BC7}&quot;</product-code>
	<portal-status>Connected</portal-status>
	<user-name>myname@mycompany.com</user-name>
	<username-type>saml</username-type>
	<state>Restoring VPN Connection</state>
	<check-version>no</check-version>
	<portal>VPNPORTALNAME.com</portal>
	<discover-ready>yes</discover-ready>
	<mdm-is-enabled>no</mdm-is-enabled>
	<gateway-list name="gateway-list" type="external">
		<entry>
			<gateway>VPNPORTALNAME.com</gateway>
			<tunnel>yes</tunnel>
			<description>VPNPORTALNAME.com</description>
			<allow-tunnel>yes</allow-tunnel>
			<passwd-expire-days>-1</passwd-expire-days>
			<priority>1</priority>
			<internal>no</internal>
			<authenticated>yes</authenticated>
		</entry>
	</gateway-list>
</response>

(T15272) 04/01/20 13:57:13:990 Debug( 350): Receive gps message with type status.
(T15272) 04/01/20 13:57:13:990 Debug(1075): ===> response sent to GPI = <
(T15272) 04/01/20 13:57:13:990 Debug(2044): pangps status is Restoring VPN Connection.
(T15272) 04/01/20 13:57:13:990 Debug(2222): Dialog Status is going to change from Connected to .
(T15272) 04/01/20 13:57:14:039 Debug( 547): CPanBaseConfigMgr::AddPortal - portal VPNPORTALNAME.com is already in list.
(T15272) 04/01/20 13:57:14:039 Debug( 547): CPanBaseConfigMgr::AddPortal - portal VPNPORTALNAME.com is already in list.
(T15272) 04/01/20 13:57:26:421 Debug(  93): Received data from Pan Service
(T15272) 04/01/20 13:57:26:421 Debug( 328): ### Download parameters ###: m_dwLatestDownlaod=1585745583, m_bDownloadStarted=0, bCheckTunnelOK=1, m_bOnDemandRead=0, bUsingCachedPortal=0, lastfaileddownload=0, m_nUpgradeMethod=2
(T15272) 04/01/20 13:57:26:421 Debug( 169): username field is not empty. not override the username.
(T15272) 04/01/20 13:57:26:421 Debug( 190): CPanBaseReceiver::HandleStatus - found discover-ready tag. value = y.
(T15272) 04/01/20 13:57:26:421 Debug( 267): message type from the service = s 
<?xml version="1.0" encoding="UTF-8"?>
<response>
	<type>status</type>
	<status>Connected</status>
	<protocol>IPSec</protocol>
	<portal-config-version>4100</portal-config-version>
	<error/>
	<uptime>231</uptime>
	<byte-received>323</byte-received>
	<byte-sent>407376</byte-sent>
	<packet-received>4</packet-received>
	<packet-sent>2631</packet-sent>
	<incorrect-packet-received>0</incorrect-packet-received>
	<incorrect-packet-sent>0</incorrect-packet-sent>
	<server-ip>20.45.0.188</server-ip>
	<local-ip>10.254.0.83</local-ip>
	<local-ipv6/>
	<connect-mode>0</connect-mode>
	<product-version>4.1.8-2</product-version>
	<product-code>&quot;{4CBE95A5-2102-46AD-8241-CE468A668BC7}&quot;</product-code>
	<portal-status>Connected</portal-status>
	<user-name>myname@mycompany.com</user-name>
	<username-type>saml</username-type>
	<state>Connected</state>
	<check-version>no</check-version>
	<portal>VPNPORTALNAME.com</portal>
	<discover-ready>yes</discover-ready>
	<mdm-is-enabled>no</mdm-is-enabled>
	<gateway-list name="gateway-list" type="external">
		<entry>
			<gateway>VPNPORTALNAME.com</gateway>
			<tunnel>yes</tunnel>
			<description>VPNPORTALNAME.com</description>
			<allow-tunnel>yes</allow-tunnel>
			<passwd-expire-days>-1</passwd-expire-days>
			<priority>1</priority>
			<internal>no</internal>
			<authenticated>yes</authenticated>
		</entry>
	</gateway-list>
</response>

(T15272) 04/01/20 13:57:26:421 Debug( 350): Receive gps message with type status.
(T15272) 04/01/20 13:57:26:421 Debug(1075): ===> response sent to GPI = <
(T15272) 04/01/20 13:57:26:421 Debug(2044): pangps status is Connected.
(T15272) 04/01/20 13:57:26:421 Debug(2222): Dialog Status is going to change from  to Connected.
(T15272) 04/01/20 13:57:26:421 Debug( 395): Portal is connected.
(T15272) 04/01/20 13:57:26:453 Debug(1133): Found more than one connections, return empty.
(T15272) 04/01/20 13:57:26:453 Debug( 564): Enter connected display, show connect button in ondemand, hide cancel button.
(T15272) 04/01/20 13:57:26:483 Debug( 547): CPanBaseConfigMgr::AddPortal - portal VPNPORTALNAME.com is already in list.
(T15272) 04/01/20 13:57:26:483 Debug( 547): CPanBaseConfigMgr::AddPortal - portal VPNPORTALNAME.com is already in list.
(T15272) 04/01/20 13:57:26:484 Debug(2451): receive resize message from 1, and new height is 291.
(T15272) 04/01/20 13:57:26:484 Debug(2451): receive resize message from 1, and new height is 254.
(T15272) 04/01/20 13:57:26:485 Debug(2451): receive resize message from 1, and new height is 254.

 

Hopefully someone out there can help out - I'm at a loss here! Thanks guys!

6 REPLIES 6

L6 Presenter

@mrclueless 

 

1. Do you see any drops through home wifi? Can you please check continuous ping to 8.8.8.8 and see if there are any drops observed.

2. Also see https://live.paloaltonetworks.com/t5/General-Topics/Global-Protect-client-disconnects-every-5-minute...

This talks about same issue and it was due to specific model of Wi-Fi Router.

 

Mayur

M

Check out my YouTube channel - https://www.youtube.com/@NetworkTalks

Thanks for your reply!

 

1. No drops in the home wifi when pinging 8.8.8.8

2. I've checked through that solution a few times, but I don't have that router or even the same provider. I'm not sure how to test if that's the issue without having to replace my entire router, which would of course be avoidable.

 

I'm guessing there's nothing to hint the problem in the logs? As I say I'm totally new so it's double-dutch to me unfortunately!

Were you able to find a solution?

 

One of our users is also having exactly the same issue as you, but I have not been able to find what is causing it. It seems the computer doesn't accept incoming traffic although I see packets getting to the gateway coming from the GP client, when a system on-prem tries to send packets to the GP client they don't get to the client. Everything points to a problem with the local computer, but haven't been able to identify why.

 

There is no problem with the address of the local adapter and the PAN-GP adapter's address since they are in two different classes (192.168.0 vs 172.17.9)

 

 

Hey, thanks for the reply.

Unfortunately no, I have not managed to find a permanent solution to this. My best approaches have been:

1. Reset internet router (just turning it off and on again mostly works - this is my most consistent solution but still not every time)

2. Restart laptop (hardly ever works any more to be honest, but worth a shot when restarting the WiFi isn't cutting it)

3. Uninstalling GlobalProtect and reinstalling (this used to work on and off, but rarely works now)

4. Biting the bullet and just hotspotting from my phone (really just whenever I can't be bothered resetting the WiFi - hotspotting works 100% of the time)

 

Unfortunately, as I said, none of these are permanent and I have to do one of these solutions most mornings. It's a real pain, but nobody else in my workplace is experiencing it which is why I also suspected it might just be my individual laptop, or my router. 

L0 Member

Hi @mrclueless , 

 

Based on the log below, it appears that UDP traffic which maintains the ipsec tunnel is missing keepalives which is causing the tunnel to drop.

(T8656) 04/01/20 13:56:18:441 Info ( 921): --Too many outstanding keepalive and no response from GP gateway, disconnect tunnel

There could be an underlying network issue but you can use the following workaround to resolve the issue temporarily. If the issue needs further investigation, please open a support ticket with Palo Alto TAC. 

 

- Uncheck "Enable IPSEC" option so that GP connection uses SSL instead of IPSEC. Please remember that this will slow down the throughput of the GP connection. Please refer to the following document as well.

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PPgZCAW

 

 

Just wanted to let everyone know that if they are having any GlobalProtect issues, and need to troubleshoot the issue, our Very own @kiwi has written a great blog all about troubleshooting GlobalProtect.

Be sure to check it out here: 
https://live.paloaltonetworks.com/t5/blogs/dotw-globalprotect-troubleshooting-tips/ba-p/383911

LIVEcommunity team member
Stay Secure,
Joe
Don't forget to Like items if a post is helpful to you!
  • 29304 Views
  • 6 replies
  • 1 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!