Firewall Enforcement related Error Messages
Table below describes the error codes when issues occur with your L3 firewall enforcement.
|
Error Code |
Error Message |
Description |
Corrective Action |
|---|---|---|---|
|
GWE23592 |
Enforcer message from <enforcer-name> has unknown serial number <enforcer-serial-number> |
This notification signifies that an invalid enforcer, which has an unrecognized serial number is being added to the system. |
Ensure that a valid enforcer with correct serial number is added on Ivanti Policy Secure. |
|
GWE24666 |
Platform mismatch for gateway with serial number <serial-number>. Connecting gateway has platform <platform-name> but is configured as <platform-name> with platform <platform-name>. |
This notification signifies that the connection profile is misconfigured with an incorrect enforcer type. |
Configure the enforcer with a valid gateway type. For example, SRX is configured as ScreenOS, ensure that the gateway type is correct. |
|
GWE24024 |
Error configuring IPsec routing for Enforcer %1(%2): source and destination zones "%3" are the same |
The IPsec routing policy is not configured correctly. |
The policy should have different source and destination zone for IPsec configuration. |
|
GWE30827 |
IC is not configured as RADIUS Auth Server on Ex enforcer <EX Switch Name> |
Ivanti Policy Secure is not configured as a RADIUS server on Juniper EX switch. |
Configure Ivanti Policy Secure as a RADIUS server on EX switch. |
|
GWT31292 |
Enforcer:<Gateway Name> (<Gateway IP address>) Enforcer failed to execute <command-name> command for <Source IP> |
The enforcer failed to execute the command for source IP address. |
Check the network connectivity between Ivanti Policy Secure and Screen OS. |
|
GWT31383 |
Gateway (Gateway IP address) request error: <Curl Error code> |
A communication error has been encountered between Ivanti Policy Secure and PAN firewall. |
Check the curl error code for corrective action. For more information, see Curl Error Codes. |
|
GWT31291 |
Enforcer: <Enforcer Name> (<Enforcer IP address>) is unreachable |
Indicates that the enforcer is offline and unreachable |
Ivanti Policy Secure retries to connect automatically. If the problem persists, check the network connectivity with Firewall. |
|
GWT31316 |
API Key retrieval for gateway IP address <Enforcer IP Address> has <Error code> |
Logs the API key retrieval status. |
Check the network connectivity and retry to retrieve the API key. |