Error:Failed to get default route entry

Error:Failed to get default route entry

58262
Created On 04/07/20 19:16 PM - Last Modified 04/09/20 23:06 PM


Symptom
  • When trying to login to the Global Protect Gateway, error message " Connection Failed: Failed to get default route entry" is seen.
 
User-added image
 
  • In the GlobalProtect Agent GPA logs, The GP client was able to identify the PANGP adapter.
(T5584) 01/25/19 12:07:58:025 Dump (3389): Adapter name: {E0504646-6C44-4B93-AB6B-FCB2F1DBE90C}
(T5584) 01/25/19 12:07:58:025 Dump (3390): Adapter friendly name: Local Area Connection 2
  • GlobalProtect Agent PanGps logs indicate it has received the default route and changes the registry key accordingly.
(T5584) 01/25/19 12:07:59:026 Dump ( 354): Setting routes...
(T5584) 01/25/19 12:07:59:026 Dump (1865): SetRoutes(): Non-SplitTunneling.
(T5584) 01/25/19 12:07:59:026 Dump (1869): SetRoutes(): Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Palo Alto Networks\GlobalProtect\PanGPS\ExclusiveDefaultRoute is 0.
 
  • The same PanGPS logs indicate that the route table is not updated with the entry, and it keeps failing.
(T5584) 01/25/19 12:08:09:086 Error(1897): SetRoutes: GetRouteTableEntry(10.150.16.143) failed
(T5584) 01/25/19 12:08:09:086 Error( 356): Error setting routes
(T5584) 01/25/19 12:08:09:086 Error( 235): ProcMonitor: SetupNetwork() failed






 


Environment
  • Global Protect Agent 4.1 and above.
  • Any PAN-OS.
  • Windows 32. 


Resolution
  1.  Please make sure that the "netsh.exe" file available under C:\Windows\system32. if needed please run the windows system file checker 'sfc /scannow'.
 The sfc /scannow command will scan all protected system files, and replace corrupted files with a cached copy that is located in a compressed folder at %WinDir%\System32\dllcache. The %WinDir% placeholder represents the Windows operating system folder.

        2. Re-install the Global Protect Agent on Windows after using the procedure below.
> In Windows cmd > sc delete PanGPS
> Clean out the registry and Program directories:
> Start > run > regedit.
> Remove the following key - HKEY_CURRENT_USER\Software\Palo Alto Networks
> Remove the following key - HKEY_LOCAL_MACHINE\SOFTWARE\Palo Alto Networks
> Delete the following folder/directory - C:\Program Files\Palo Alto Networks
> Delete the following folder C:\Users\User\AppData\Local\Palo Alto Networks
> Uninstall the 3rd party VPN softwares and other softwares which can deny the route table modification.
> Reboot
> Reinstall the GP software.

 


Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PPWeCAO&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments