Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Who Me Too'd this solution

For each IP that you want the firewall to ARP out for, in this case you would have to apply all 32 external addresses to the firewall external interface in order to avoid the TTL expired loop if those IPs "belong" to the firewall NATs.

You can script it out via CLI commands and make it really easy to just blast all the commands onto your PA via an SSH session, but that's completely up to you.

View solution in original post

Who Me Too'd this solution