02-10-2020 02:01 AM
One of our Colleagues isn't able to connect from his home in Germany to our Gateway in Switzerland when using the GlobalProtect Client (V. 5.1.0-75) when using either his Home Internet Connection (via WiFi) nor when using a Mobile Hotspot (Vodafone Mobile on iPhone), are there any Limitations or issues known with this Combination?
06-29-2023 06:58 AM
I've had an issue issue with these providers where they were offering IPv6 at the customer level and applying NAT64 once connections left their network. The additional ipv6 header was wreaking havoc on GP connectivity and we ended up needing to lower the MTU for these users to be able to get connected, might be worth checking if you have a similar issue
02-10-2020 02:16 AM
@HF_Martini6Hello,
There are no limitations as such. What do you see in the logs on firewall ?
- Mayur
02-10-2020 02:41 AM
unfortunately i do not have access to any Firewall Logs or Settings, i can only see what's going on in the Logs of the Machine my Colleague is using.
02-10-2020 03:55 AM
Is there any chance if someone can check logs on firewall? Check if request is hitting firewall and it is getting allowed.
Mayur
02-10-2020 05:23 AM
i'll check with our iT Security Departement aka "the Dungeon Keepers"
06-28-2023 02:39 AM
Hi,
I have a similar issue with Global Protect with a user on Vodafone, Germany.
Did you ever fix this ?
06-29-2023 06:09 AM
You might get more traction on your question opening a new discussion. As @SutareMayur mentioned in this thread, the first place to look would be the firewall logs to ensure the traffic is evening hitting your device.
06-29-2023 06:58 AM
I've had an issue issue with these providers where they were offering IPv6 at the customer level and applying NAT64 once connections left their network. The additional ipv6 header was wreaking havoc on GP connectivity and we ended up needing to lower the MTU for these users to be able to get connected, might be worth checking if you have a similar issue
02-12-2024 01:23 AM
It turns out this was a weird MTU issue, Manually decreasing the MTU on the NIC/IP stack via powershell, fixed end to end traffic.
Thanks Reaper
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
