Hi guys!
I have configured a site 2 site IPSec VPN with a partner, the tunnel is established and the tunnel status shows all green.
Now I am trying to ping some of the remote hosts and I get no reply.
I added the log traffic for the auto created firewall rules and I can see the ICMP request in the real-time log as allowed
I wonder what would be another way to troubleshoot and see if the packages are leaving my firewall?
Another interesting thing, my internal interface is 10.0.0.0 /8 and my internal hosts are in the same ip pool and subnet, in order to establish the tunnel, palo alto had to setup the hosts internal and remote hosts as /32
Not sure if that could be a problem or not.
Anyways, I just want to find a way to see the traffic leaving my UTM , I know that the firewall rules are not blocking it.
any advise in how to troubleshoot further is welcome.
Thanks
Gaston
This thread was automatically locked due to age.