TAP in environments with asynchronous routing

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

TAP in environments with asynchronous routing

L6 Presenter

We have a situation where we can't get all the mirrored traffic to the same interface. But as it's asynchronour souting nevironment a packet can be mirrored to one interface and the reply to the other. So we need to connect 2 PA TAP interfaces to capture whole sessions. The question is will PA match the packets into same session if we put both interfaces into the same security zone?  

2 REPLIES 2

Cyber Elite
Cyber Elite

Hello,

While I do not know the PAN answer, wouldn't the pcap device on the back end be able to do this? Asking since I dont know and its an interesting scenario.

 

Regards,

The scenario is to introduce PA capabilities to the customer (SLR) so we want to put it in TAP mode on north/south traffic.

  • 3318 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!