TAP in environments with asynchronous routing

Reply
L5 Sessionator

TAP in environments with asynchronous routing

We have a situation where we can't get all the mirrored traffic to the same interface. But as it's asynchronour souting nevironment a packet can be mirrored to one interface and the reply to the other. So we need to connect 2 PA TAP interfaces to capture whole sessions. The question is will PA match the packets into same session if we put both interfaces into the same security zone?  

Tags (1)
L7 Applicator

Re: TAP in environments with asynchronous routing

Hello,

While I do not know the PAN answer, wouldn't the pcap device on the back end be able to do this? Asking since I dont know and its an interesting scenario.

 

Regards,

L5 Sessionator

Re: TAP in environments with asynchronous routing

The scenario is to introduce PA capabilities to the customer (SLR) so we want to put it in TAP mode on north/south traffic.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!