Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

Packets loss but no drops - VM Series, AWS, GWLB

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Packets loss but no drops - VM Series, AWS, GWLB

L0 Member

i have a server sending traffic on 443 through GWLB to my Palos and out to the internet

 

The logs all say 'aged out'

 

Packet capture reveals the SYN arriving wearing GENEVE, being de-encapsulated, source NATed and forwarded out Untrust

 

The SYN/ACK arrives on Untrust, but there is no record of the firewall forwarding these packets to GWLB and client - they just vanish

 

The drops packet capture is empty

 

This worked previously, but we had to rebuild Panorama after a disaster and a colleague has been 'hardening' the appliances

 

I suspect an error has been introduced but for the life of me I can't work out what it might be

1 REPLY 1

L0 Member

Hi Dave!

Hope all is well. I would recommend setting up packet filters and collecting the global counters if you have not done so yet...

How to check global counters for a specific source and destinat... - Knowledge Base - Palo Alto Netw...

Feel free to provide the output for the global counters once you have them.

  • 1717 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!