Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 272
An administrator analyzes the following portion of a VPN system log and notices the following issue:
`Received local id 10.10.1.4/24 type IPv4 address protocol 0 port 0, received remote id 10.1.10.4/24 type IPv4 address protocol 0 port 0.`
What is the cause of the issue?
Answer options
- A. bad local and peer identification IP addresses in the IKE gateway
- B. IPSec crypto profile mismatch
- C. mismatched Proxy-IDs
- D. IPSec protocol mismatch
Correct answer: C
Explanation
The correct answer is C because mismatched Proxy-IDs indicate that the local and remote networks are not properly defined for traffic to pass through the VPN. The other options relate to different configurations that would not specifically address the Proxy-ID issue presented in the log excerpt.