09-02-2014 07:43 AM
Does anyone know if the PA supports dynamically updating the routing table on a PA FW based on PING results? Some vendors refer to this as IP SLA.
09-02-2014 07:47 AM
You could set up policy based forwarding with monitoring but this would simply be a yes/no routing decision based on ping reply or timeout
09-06-2014 10:52 AM
Palo Alto calls the IP SLA feature "Path Monitoring". This can be used with a variety of features like virtual routers, Policy Based Routing, VPN or High Availability to control failover scenarios.
Here are two sample configurations.
Dual ISP Branch Office Configuration
How to Configure Dual VPNs with Dual ISPs from a Single PAN to a Remote Site
09-06-2014 01:47 PM
Its possible through PBF. In PBF you can configure route failover upon ping response.
Refer following document for PBF configuration, Page 5 has information on Path Monitor which triggers failover of route based on ping.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!