This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Test PA-200 parrallel to current firewall

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Test PA-200 parrallel to current firewall

MdeLoos
L0 Member

‎04-08-2014 04:30 AM

I received a PA-200 device for review and testing. I like to set it up besides my current firewall and see what it can filter.

Via SPAN Monitor on a Cisco switch I copy all traffic on the UNTRUST side to the PA-200. Now I get a lot of tcp-reject-non-syn drops.

What is the correct way to configure the PA-200 to listen to all traffic on the UNTRUST line?

0 Likes Likes
3 REPLIES 3

jdelio
L7 Applicator

‎04-08-2014 06:18 AM

Normally you mirror the port from the "external" working interface to wherever the PAN is plugged into, and configure the PAN to be in a "TAP" interface mode.

Is the PAN in "TAP" mode for its interface?

Per the Admin guide, it states the following:

Tap Mode Deployments

A network tap is a device that provides a way to access data flowing across a computer network. Tap

mode deployment allows you to passively monitor traffic flows across a network by way of a switch

SPAN or mirror port.

The SPAN or mirror port permits the copying of traffic from other ports on the switch. By dedicating an

interface on the firewall as a tap mode interface and connecting it with a switch SPAN port, the switch

SPAN port provides the firewall with the mirrored traffic. This provides application visibility within the

network without being in the flow of network traffic.

Note: When deployed in tap mode, the firewall is not able to take action, such as

blocking traffic or applying QoS traffic control.

LIVEcommunity team member
Stay Secure,
Joe
Don't forget to Like items if a post is helpful to you!

admin
Not applicable
In response to jdelio

‎04-08-2014 06:22 AM


Thanks jdelio.

That seems what I am looking for. The admin guide is not telling much, but using tap mode deployment I could find an how to on configuring this.

Cheers,
Menno.

0 Likes Likes

jdelio
L7 Applicator
In response to admin

‎04-08-2014 06:45 AM

Please mark this as "Correct" or "Helpful" as this will help everyone in the community. 😃 Glad I could help.

LIVEcommunity team member
Stay Secure,
Joe
Don't forget to Like items if a post is helpful to you!
0 Likes Likes
  • 3152 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks