This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About hankim
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About hankim
08-18-2015
5Posts
0Likes
0Solutions
Aug 18, 2015Last Visited
User
Activity
User
Profile
Latest posts by hankim
| Subject | Views | Posted |
|---|---|---|
| 3636 | 08-26-2011 01:11 PM | |
| 1994 | 08-09-2011 01:03 PM | |
| 3636 | 08-02-2011 02:04 PM | |
| 4078 | 08-02-2011 06:58 AM | |
| 2159 | 07-29-2011 02:13 AM |
User Badges
Community Statistics
| Member Since | 05-16-2011 01:06 PM |
| Date Last Visited | 08-18-2015 09:07 AM |
| Posts | 5 |
08-26-2011
01:11 PM
Hi Nick, Thanks for the update. Looking forward for this update. Please keep me posted when this is available:-) - Kim
... View more
08-09-2011
01:03 PM
Hi Phil, I already done this by a partner. The case id is:00045013 - Kim
... View more
08-02-2011
02:04 PM
Hi again, What I@ve done so far: I´ve added the following IPv6 addresses in to the config: ethernet 1/2.50 2001:8C0:3210:128::1/64 ethernet 1/2.10 2001:8C0:3210:100::1/64 When I try to get a computer up and running with autoconfig on IPv6 on the network 2001:8C0:3210::/64 it doesn´t get an IPv6 address. If I then put on DHCP relay to my DHCP server and put on a IPV6 scope I@m getting an IP address but I can´t ping 2001:8C0:3210:128::1. Normally a client should be configured with an IPv6 address through a non-DHCPv6 based mechanism such as IPv6 address auto-configuration (based on the IPv6 prefixes included in router advertisements), or static IP address configuration. For me it seems like my Palo Alto 2050 doesn´t announce the prefix and routing information to the clients? Is that correct? How can I fix this?
... View more
08-02-2011
06:58 AM
I've set up a global IPv6 address on my interface on PA-2050 btu I can't find any place to advertise the network and router - info to the clients. How can I set up this? CLI-commands?
... View more
- Tags:
- dhcp
- ipv6
- networking
Labels:
- Labels:
-
Networking
07-29-2011
02:13 AM
Here is my «little» problem: Background: Extended Unique Identifier (EUI) When the link-local address is automatically generated, the device identifier is derived from the switch's 48- bit (hexadecimal) MAC address to create a 64bit Extended Unique Identifier (EUI) to be appended to the fe80 link-local prefix, as follows: - ff-fe is inserted between third and fourth bytes of MAC address - The second low-order bit (the Universal/Local bit) in the first byte of the MAC address is complemented, which usually means the bit is originally set to 0 and is changed to 1. This indicates a globally unique IPv6 interface identifier. For example: MAC Address IPv6 I/F Identifier Full Link-Local Unicast Address 00-15-60-7a-ad-c0 215:60ff:fe7a:adc0 fe80::215:60ff:fe7a:adc0/64 09-c1-8a-44-b4-9d 11c1:8aff:fe44:b49d fe80::11c1:8aff:fe44:b49d/64 00-1a-73-5a-7e-57 21a:73ff:fe5a:7e57 fe80::21a:73ff:fe5a:7e57/64 For related information, refer to: - RFC 2373: “IP Version 6 Addressing Architecture” - RFC 2464: “Transmission of IPv6 Packets Over Ethernet Networks” The problem: The EUI method of generating a link-local address is automatically implemented on the Paloalto firewall when it’s not manually inserted, but it doesn’t generate a unique address on each VLAN that is on the same port. We are having 2 external interfaces on two different VLAN’s on port 1 and 15 interfaces on 15 VLAN's on port 2. One of the errors that we receive from the config when we press Commit is: “routed: Identical interface IDs used to generate IPv6 link-local address for interface ethernet1/2.12 and ethernet1/2.10. Management via link-local address on these interfaces is disabled.” “routed: Identical interface IDs used to generate IPv6 link-local address for interface ethernet1/1.200 and ethernet1/1.100. Management via link-local address on these interfaces is disabled.” If Palo Alto can’t generate 64-bit EUI’s that is different on each VLAN’s on the same ethernet interface how can we manually generate unique 64-bit EUI’s? BTW I'm running version 4.0.4 of the software in HA Active-passive.
... View more
Labels:
- Labels:
-
Configuration
-
Networking
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
08-18-2015
09:07 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks