Don't get me wrong, I really like PAN-OS 5, but why did they take my favorite troubleshooting tool away?
The PA is the new device in our environment and if anything is not working all blame on the 'new guy'.
User claims: 'since we have the new firewall I can't get to webpage xyz anymore'
Admin: A quick telnet from the PA to xyz on port 80 is timing out?
Admins answer: Sorry Sir, the webpage is either down or somebody upstream is blocking the access. Not even the firewall can get there.
Actually, if they re-enable it (the underlying BusyBox certainly still supports it) it would be really cool if we could specify a source interface like for ping and traceroute.
Am I the only one who's missing telnet or it it worth an RFE?
Just throwing this one out there, but you can build a rule with specific source/destination traffic and then have the PA packet capture on that one specific rule:
I've used this and it works... it's kind of a "ghetto tcpdump" way of doing it. The packet captures show up in the Monitor tab with a green arrow next to them, just as though a Threat rule that had 'packet capture' turned on had matched.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!