This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
About olloczky
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- LIVEcommunity
- About olloczky
05-17-2021
11Posts
0Likes
0Solutions
May 17, 2021Last Visited
User
Activity
User
Profile
Latest posts by olloczky
| Subject | Views | Posted |
|---|---|---|
| 1225 | 04-29-2021 02:15 AM | |
| 1225 | 04-29-2021 02:14 AM | |
| 1301 | 04-28-2021 05:37 AM | |
| 1542 | 02-12-2021 12:50 AM | |
| 1656 | 02-11-2021 07:02 AM |
User Badges
Community Statistics
| Member Since | 01-04-2021 11:11 PM |
| Date Last Visited | 05-17-2021 11:15 AM |
| Posts | 11 |
04-29-2021
02:14 AM
Thanks for the reply. What do you mean user profile? On her windows machine?
... View more
04-28-2021
05:37 AM
Hi All, I have a user who connects via a thin client with GP to our network. Actually we have around 50 users, but this one user has many problems. She gets disconnected multiple times a day. She tried multiple connections: her current residence with both wifi and cable, at her parents, both cable and wifi (2 different cities), and mobile data from her phone. I gave her a different thin client (newer model), same problem. In the GP logs I can see only that the socket was closed and then the connection is decomssioned. She is rightly unhappy right now and I have no clue what can cause this problem. Others dont face this problem on this regular interval. There are occasional disconnects but for the 50 user base it happens like 5-6 times a week. Panos version: 9.1 GP version: 5.1 Thanks, Daniel
... View more
02-12-2021
12:50 AM
I also noticed that in the logs it says "application not-applicable". But the log clearly says that it is port 22 which is used... very strange..
... View more
02-11-2021
07:02 AM
Hi All, I have a security rule to allow ip "A" to ssh to ip "B". I can see the traffic actually hitting the fw but it gets dropped with interzone-default. The test policy match also verifies that it matches the traffic. IP "B" is actually the firewall. And IP "B" is nated like this: original packet source IP "C", original packet dest ip "A", translated packet source ip "B". How can this happen? So the traffic hitting the firewall has an explicit allow rule but still missed. IP "A" is on the other end of the IPSec tunnel and when this traffic comes, it successfully creates a child SA. Routing is also set up for IP "A" Chhers, Daniel
... View more
01-08-2021
01:50 AM
Thank you guys. I was able to collect logs on client side but the security rules restrict me to gather them but that is a different topic 🙂 Thank you all for your inputs!
... View more
01-06-2021
11:06 PM
@Brandon_Wertz thanks for that! I've checked those logs as well. Either I'm not smart enough to interpret those logs or those are just really the events which are logged and not the detailed info and error codes. Because the latter is not enough for me now unfortunately. I really appreciate your inputs guys!
... View more
01-06-2021
06:49 AM
Hi @Astardzhiev, Thanks for this info! Unfortunately our clients are thin clients with veeeery limited capabilities. This means they cannot create files on the computer, thus cannot save logs. Maybe the first option is feasible, will check that. Besides from client side, is there no way to check similar debug infos on the FW side?
... View more
01-06-2021
04:31 AM
Hi Guys, Some of our users experience disconnects from our GP VPN. When it happens it always impacts a partial set of the clients not everyone. I would like to know a method in which I can determine the reason of the disconnection. In the Monitor-Logs-GlobalProtect tab I can only see the fact if a user is logged-out or logged in and authentication steps. Is there a way to know if somethings happening on the PA side or the users' home ISP is misbehaving? PA version: 9.1.3-h1 GP version: 5.2.4 Cheers, Daniel
... View more
01-06-2021
04:27 AM
Hi Reaper, Thanks for the info. Hopefully we will have a session with the customer on Friday so we can clarify the settings.
... View more
01-05-2021
04:25 AM
Hi All, I'm a medior network engineer who just got into a new position where I deal with PA FWs. I face the following issue now: There is an IPSEC site-to-site VPN between my PA-850 (ver. 9.1.3) and a remote FW (I'm not sure about the remote device type). I see strange behaviours. Yesterday 3 pm the rekey happened. It finished with ikev2-nego-child-succ event and created a Child_SA. But today morning all the keys got renegotiated starting with this event: Ikev2-nego-child-start. Description: IKEv2 child SA negotiation is started as responder, rekey. Initiated SA: *local_ip*[500]-*remote_ip*[500]. After this all the child SAs for the various proxy ids got deleted and then re-installed. Note: I started the story with yesterday's rekey. That was also a chain of events like this, in which the rekey was not yet due. Our workforce is relying on this IPsec tunnel, but that is also strange that on yesterday's failure they all experienced connectivity issues while on today's one they did not. Please let me know if you have any ideas, or question. Cheers, Daniel
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
05-17-2021
11:15 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2022 - Palo Alto Networks