Solved

Microsoft Azure Site-to-Site VPN with Palo Alto

Posted on 2016-10-27
  • Azure
  • VPN
  • Networking
  • Windows Networking
  • Internet Protocol Security
  • +1
3
183 Views
Last Modified: 2016-11-03
Hello Experts,

I'm trying to build a Microsoft Azure site-to-site vpn where the local end device is a Palo Alto Networks firewall.

I have been trying to follow the example shown here ....

https://live.paloaltonetworks.com/t5/Integration-Articles/Configuring-IKEv2-VPN-for-Microsoft-Azure-Environment/ta-p/60340

But I'm not having any luck establishing a connection.

Has anyone successfully established a connection with a Palo Alto firewall?

Kind regards

Carlton
0
Comment
Question by:Member_2_7966113
  • 2
3 Comments
 

Author Comment

by:Member_2_7966113
ID: 41864088
Hello Experts,

I have managed to establish a connection in Microsoft Azure, see image, however the Tunnel won't come up in Palo Alto, but IKE is up

( description contains 'IKEv2 child SA negotiation is failed as initiator, non-rekey. Failed SA: 64.187.124.5[500]-13.89.33.31[500] message id:0x00000107. Error code 111' )

Can someone please shed some light on the problem?

Cheers
azure.png
paloalto.png
0
 
LVL 34

Accepted Solution

by:
Istvan Kalmar earned 500 total points
ID: 41864699
Check the routing table of devices between the firewalls.  A route table entry may need to be added or removed to provide proper network connectivity.
0
 

Author Closing Comment

by:Member_2_7966113
ID: 41872919
Hi Istvan, Thanks for responding

Cheers
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question