Policy Based Forwarding and global protect

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Policy Based Forwarding and global protect

Not applicable

Hello people,

I have a PBF problem and can not solve it without help.

My PA-500 firewall have dual ISP links. One of them is for users,

and uses normal routing. The other one is for testing purposes,

I use PBF to route few machines through other ISP link and it

works fine. However, what I failed to do is global protect service

on this second link (PBF next hop interface), can not even ping

from internet IP address on this link. I suppose that the problem is

with routing, because my default route points to other link where the

rest of users go and IP adress to which I connect is IP address on the

router itself not IP address behind router (traffic is not going through the

router when I connect with global protect or when I try to ping, it is destined

to the router itself). I tried to find workaround with PBF, not worked. I even added

another default route with higher metric that point to this interface, still not working.

Any idea or suggestion ?

Thanks in advance,

Vladimir

2 REPLIES 2

L6 Presenter

Did you assign both ISP connections on the same security zone?

No I did not.

  • 1958 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!