“GPCS-allow-inbound-ssl-vpn-rule” rule logged in Decryption log

“GPCS-allow-inbound-ssl-vpn-rule” rule logged in Decryption log

1837
Created On 05/30/22 00:45 AM - Last Modified 03/15/24 01:20 AM


Symptom


  • GPCS-allow-inbound-ssl-vpn-rule is logged under GUI: Panorama > Monitor > Logs > Decryption.
  • This rule is not configured by the end customer.
  • Here is the sample output and you can see that source and destination zone are untrust.
GPCS-allow-inbound-ssl-vpn-rule.png
 
 

Environment


  • Prisma Access
  • Remote networks
  • Mobile users
  • Logs

Cause


  • GPCS-allow-inbound-ssl-vpn-rule is implicit rule created by the system.
  • The rule is applicable when the traffic is between untrust to untrust.
  • In this example, both the source and destination zones are both "untrust".
  • PrismaAccess will generate logs even though it hits to implicit rule for the notification purpose.

Resolution


No Action is needed as this is the implicit rule created by the system.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000CpmVCAS&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail