This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About bwmillslg
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About bwmillslg
08-18-2015
7Posts
0Likes
0Solutions
Aug 18, 2015Last Visited
User
Activity
User
Profile
Latest posts by bwmillslg
| Subject | Views | Posted |
|---|---|---|
| 5179 | 01-10-2010 08:13 AM | |
| 6739 | 01-08-2010 12:23 PM | |
| 8682 | 12-04-2009 09:09 AM | |
| 8683 | 12-03-2009 09:44 AM | |
| 9534 | 12-03-2009 07:57 AM | |
| 3672 | 12-03-2009 07:44 AM | |
| 4061 | 12-02-2009 12:22 PM |
User Badges
Community Statistics
| Member Since | 12-01-2009 02:13 PM |
| Date Last Visited | 08-18-2015 09:06 AM |
| Posts | 7 |
01-10-2010
08:13 AM
Good thing I only have 1 Mac user that needs remote access, then! We're using VNC as a workaround, I wonder if there is an IPSec method to connect him?
... View more
01-08-2010
12:23 PM
Are there any plans or a timeline for an SSL VPN client for Apple Mac?
... View more
12-04-2009
09:09 AM
"Basically, if you put in an address of 12.x.x.1/27, for example, on an external interface of the pan, that means that we are going to be listenting for all of the IPs in that range (27 bit mask = 30 addresses). " Ah, that makes more sense. In our current configuration, we use a small handful of that 30 address range to NAT individual websites and domains that we serve to the Internet. Multiple sites under multiple domains. The existing firewall requires each public address to be entered as a secondary on the external interface before you can put it in the NAT table. I'll have to look at your suggestions on the NAT policy in the PA-500. It seems that my preconceptions from previous firewalls are leading me astray when it comes to these new (and *better!*) ways of doing the same things. Thanks for your help!
... View more
12-03-2009
09:44 AM
It would seem that as I continue my research, I'm finding that the subinterfaces require VLAN tags. I'm not certain how this will affect my traffic on the internal network. I have some VLANs, but I wasn't planning to create new ones to accomodate the incoming traffic. In my current firewall, I just add a list of secondary IP addresses and go about the business of NAT'ing those to other LAN addresses. Maybe I should be looking at it another way?
... View more
12-03-2009
07:57 AM
I'm trying to add more of the public IP addresses issued by my ISP to the external port on my PA-500. When I try to commit the config, I get this error: routed: In virtual-router Incoming: address 12.x.x.x/27 on interface ethernet1/1 has overlapping subnet with address 12.x.x.x/27 on interface ethernet1/1. Commit failed I have a range of 30 addresses, but can only seem to add one to the interface. What am I missing?
... View more
Labels:
- Labels:
-
Configuration
-
Set Up
-
Troubleshooting
12-03-2009
07:44 AM
That makes so much more sense, thank you! I was under the impression that the agent ran on every user's desktop. It's even better than I thought! :smileygrin:
... View more
12-02-2009
12:22 PM
Is there a timeline available for when the User ID agent will work on Windows 7? I need to plan a rollout of new PC's early next year, and I need to know if they are going to need downgrades to XP for any length of time. I know that the captive portal should still work, but not having to authenticate was a big plus in getting buy in for the new firewalls. Thanks, Bill
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
08-18-2015
09:06 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks