10-21-2020 12:28 PM
I have IPsec vpn tunnel between Palo alto to cisco asa, tunnel is UP however it disconnect intermittently. Is there any way to check reason behind disconnection in logs? I have applied path monitoring but it show only UP and down logs not exact cause.
10-22-2020 02:06 AM
Hi @DhananjayBhakte ,
Yes, there are plenty of articles for debugging/troubleshooting/setting up SSL VPN.
Please search right here on the LIVEcommunity or head to the Palo Alto Knowledge Base.
Here's are a few as an example:
How to Troubleshoot IPSec VPN connectivity issues
IKEv1 VPN error logs - Troubleshooting
IPSec and Tunneling Resource list on Configuring and Troubleshooting
10-22-2020 03:12 PM
While the Palo Alto will not drop a tunnel due to no traffic, an ASA will. So if not traffic is flowing across to the VPN to the ASA, the ASA might drop the tunnel.
The logs should tell you why the tunnel is dropping.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!