GlobalProtect tunnel is temporarily disconnected after signing in to Windows when using pre-logon in NGPA environment

GlobalProtect tunnel is temporarily disconnected after signing in to Windows when using pre-logon in NGPA environment

1020
Created On 02/14/25 06:12 AM - Last Modified 05/09/25 03:06 AM


Symptom


  • When signing in to Windows client with GlobalProtect which pre-logon is enabled, the tunnel to the GlobalProtect Gateway is temporarily disconnected.
  • The tunnel is reconnected automatically after several tens of seconds.
  • The location of the affected Gateway has multiple active IP addresses due to the autoscaling event of the Next Generation Prisma Access (NGPA) feature.

Environment

Cause


  1. The NGPA environment cannot support the tunnel rename, so the client cannot continue to use the same tunnel with just tunnel rename.
  2. It has to establish the GlobalProtect connection again, and there are several tens of seconds of disconnection during the establishing. 



              
Resolution

N/A



              
Additional Information

Please refer to each of the following information, if you need.


GlobalProtect Pre-Logon




        
       
      





      

        
        
        

    

    

    

      

        
Other users also viewed:

        

             

               
              

        

    

        

        
        

          
Actions

          
    
           
            
            
            
  • 
                Print
            
    • 
            
  • 
            
    • 
            
  • 
              Copy Link
                
                
    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000TpemCAC&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail
    
            
    •