This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
Accept
Reject

About securehops

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
securehops
‎02-03-2023
since ‎01-07-2021
L3 Networker
User Activity
User Profile
Latest posts by securehops
View All
My Liked Posts
View All
My LIVEcommunity Articles Contributions
View All
User Badges
Community Statistics
Member Since ‎01-07-2021 07:32 AM
Date Last Visited ‎02-03-2023 09:22 AM
Posts 45
Total Likes Received 5

Migrate Panorama to AWS

by in Panorama Discussions
‎02-02-2023 07:32 PM
‎02-02-2023 07:32 PM
Hi,   I'm planning to do a migration of Panorama from esxi to  AWS.  This will require the Panorama to have a different IP address.   What's the best way to handle the IP change, if the firewalls are getting the Panorama IP config from device template setting?   Is it best to override locally after the migration and then update the template after?     ... View more

Re: Panorama in AWS

by in General Topics
‎12-05-2022 10:01 AM
‎12-05-2022 10:01 AM
Thanks @JayGolf    I've already read the guide.  Unfortunately, it doesn't help with my question.  If I were to deploy a management VPC just for Panorama, that traffic would still flow through an east/west GWLBe to get to the destination.  I'm trying to figure out if that is not recommended and/or if it will potentially cause problems.    ... View more

Panorama in AWS

by in General Topics
‎12-04-2022 05:48 PM
‎12-04-2022 05:48 PM
In an AWS environment which is making use of the TGW and GWLB,  is it okay to deploy Panorama in a VPC that gets routed through GWLBe or should Panorama get deployed in the security VPC and have the route tables bypass all gwlb endpoints?   I'm wondering if having panorama go through gateway load balancer endpoints would cause issues.   The panorama will manage AWS and on-prem firewalls ... View more

Re: Multiple ISPs with Path Monitoring

by in General Topics
‎09-29-2022 04:01 PM
‎09-29-2022 04:01 PM
Hi @Astardzhiev    This is what I figured but wanted to be sure I was not missing something.   Interesting idea about the PBF rule for ISP 2.     Does it make more sense to do PBF instead of path monitoring? Wasn’t sure if Palo still recommends PBF   Also, I was wondering is there a best practice on what IP address to use for the PBF monitor or static route path monitoring?   I see some people using the ISPs default gateway.  I can see scenario where DG is reachable but an upstream issue with ISP could prevent internet access.   I see others using something like 8.8.8.8 but not sure that’s the best idea either    any thoughts ?       ... View more

Multiple ISPs with Path Monitoring

by in General Topics
‎09-28-2022 05:55 PM
‎09-28-2022 05:55 PM
Hi All   Need a sanity check.  When deploying multiple ISPs using path monitoring, instead of policy based forwarding,  should the 2nd ISP become unreachable?  It makes sense that it does, but it wasn't mentioned in Palo article about it   Setup would be ISP1 (e1/1)  0.0.0.0/0  1.1.1.254  priority 10 (with path monitoring) ISP2 (e1/4) 0.0.0.0/0 2.2.2.254  priority 200   VPN tunnels for both ISP1 and ISP2 using tunnel monitor   With this config:   ISP1 tunnel is up,  e1/1 is pingable from outside ISP2 tunnel is down,  e1/4 is NOT pingable from outside           ... View more
Register or Sign-in
Contact Me
Online Status
Offline
Date Last Visited
‎02-03-2023 09:22 AM
Latest Tags
No tags yet
LEGAL NOTICES
RESOURCES
Copyright 2007 - 2023 - Palo Alto Networks