04-20-2021 04:33 AM
Hello Friends !
I am new to palo alto network ,i starting to understand and learn palo alto network firewall some time back .
I have setup a firewall panos 9.04 on ubuntu with kvm using bridge connection and vlan ( i want to setup a passthroguth but due to iommu group i am fail to do so)
my isp (with rj 45) is providing me dhcp address with vlan i am able to get/reslove ip address .
my problem is how to setup snat or/and virtual route
04-20-2021 04:53 AM
if your interface is DHCP client, you can set up a SNAT rule bound to the interface without defining the IP
the virtual router automatically learns the default route if you enable the interface to accept it
04-20-2021 05:28 AM
Thanks !
I did this part but i am not able to get internet in session browser i can see lot of traffic with dns only .
04-20-2021 09:14 AM
Take DNS out of the equation and try running a simple ICMP request to an IP that you know to accept ICMP traffic (9.9.9.9, 8.8.8.8, ect) and see if you get a response. You likely won't; your logs don't see a session_end_reason, but I imagine that the traffic is aging out. Verify that you have your routes setup correctly.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!