cannot connect to VM-Series Next-Generation Firewall

Announcements

Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.

Reply
careem785
L1 Bithead

cannot connect to VM-Series Next-Generation Firewall

cannot connect to VM-Series Next-Generation Firewall (both BYOL and Bundle1)

getting connection refused for both SSH and HTTPS

tried with public ip  and private ip

tostern
L2 Linker

Hi @careem785 

 

where do you deploy it? Azure/AWS/GCP

 

Regards,

Torsten

JoergSchuetter
L4 Transporter

Hello @careem785 

Are you talking about a setup in Azure? If so, please check the NSG (Network Security Group) for the firewall (NIC and VNET).

tostern
L2 Linker

when you talk about Azure then create please a NSG as shown below and attach it to the NIC.

 

Screenshot 2020-09-16 at 15.50.41.png

Then when you using a Public IP (Standard) then is there a implicite deny when you not attach any NSG to it

careem785
L1 Bithead

its in AWS and security group rules are fine , i can ping to the device but SSH and HTTPS not working 

 

Tags (1)
tostern
L2 Linker

Hi @careem785 

 

are you using the correct ssh key pair? Look at Step 4 in that document

 

https://docs.paloaltonetworks.com/vm-series/9-0/vm-series-deployment/set-up-the-vm-series-firewall-o...

 

Then AWS works with ssh key pairs and not with username/password

 

Regards,

Torsten

careem785
L1 Bithead

key pair is fine , i am getting "connection refused" error message

tostern
L2 Linker

did you swap the management interface? 

careem785
L1 Bithead

no , how to do that?

tostern
L2 Linker

you can't doing it without having cli access to firewall. Please double check taht you are using the right interface and not that you try to connect to the untrust interface.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!