I have and external website that I need to access on port 10443: https://<public IP>:10443. The connection never completes and times out.
If I pull the PA FW out and throw in an ASA, works just fine. The logs on PA don't even show port 10443 being accessed or logged.
No matter what log I check, I find nothing.
Have you tried running a packet capture & global counters to check for any drops/reasons for drops? Is there any asymmetric routing in your network?
How to run a capture -
Global counters -
hope this helps!
Good idea on the drop rule. It's a very basic setup, and all rules log start and end of session. Capture logs show retransmissions, and traffic is getting to device.
Additionally another app that uses SSL over a non stanard port also did not work. Swapped PA with an ASA and both apps worked.....definatley something on the PA.
All other software up to date.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!