Palo Alto Networks Knowledgebase: Cannot Ping Default Gateway

Cannot Ping Default Gateway

4073
Created On 02/07/19 23:44 PM - Last Updated 02/07/19 23:44 PM
Resolution

Symptom

Cannot ping default gateway. The firewall seems to not build dynamically an ARP entry for the IP of its default gateway.

 

Resolution

Review your NAT policies.

 

The firewall performs proxy ARP on the IPs configured for inbound NAT as destinations. A network object that includes the IP address of the default gateway is commonly used in the destination field of a NAT rule. This will result in the proxy ARP process preventing the firewall from building an ARP entry for the firewall's default gateway.

 

owner: parmas

 



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CltvCAC&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language